URL: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=b8f9448c7887729ce82efeb097da01b9f8d246de
Submitter: "Alexis La Goutte <alexis.lagoutte@xxxxxxxxx>"
Changed: branch: master
Repository: wireshark
Commits:
b8f9448 by Aurelien Aptel (aaptel@xxxxxxxx):
SMB2: try to guess encryption settings when not available
When dissecting a capture made in the middle of an existing encrypted
session we cannot decrypt the traffic because we don't know:
* what SMB dialect and encryption algorithm was picked during the
session establishment
* which host is the server and which host is the client
Since we know the decrypted payload always starts with a valid header
we use this as an heuristic and try all possible decryption settings.
Change-Id: I1daa297ced98e62cf361b9022871c668e56f8f4b
Reviewed-on: https://code.wireshark.org/review/36136
Reviewed-by: Peter Wu <peter@xxxxxxxxxxxxx>
Petri-Dish: Peter Wu <peter@xxxxxxxxxxxxx>
Tested-by: Petri Dish Buildbot
Reviewed-by: Alexis La Goutte <alexis.lagoutte@xxxxxxxxx>
Actions performed:
from 95a37ff SMB2: allow users to give decryption keys directly
add b8f9448 SMB2: try to guess encryption settings when not available
Summary of changes:
epan/dissectors/packet-smb2.c | 222 ++++++++++++++++++++++++++++--------------
test/suite_decryption.py | 4 +-
2 files changed, 153 insertions(+), 73 deletions(-)