Wireshark-dev: Re: [Wireshark-dev] Some questions on RPC dissectors (for a new Gluster dissecto

From: Niels de Vos <ndevos@xxxxxxxxxx>
Date: Tue, 24 Apr 2012 13:50:49 +0200
On 04/24/2012 08:39 AM, Kaul wrote:
On Fri, Apr 20, 2012 at 6:08 PM, Niels de Vos<ndevos@xxxxxxxxxx>  wrote:

Hi all,

Bug 5773 was opened as an RFE for implementing a dissector for Gluster.
The Gluster 'protocol' consists out of several RPC-programs, each with
their own set of procedures.

There are some questions I would like to ask:

...snip...
2)
The Gluster protocols use RPC-credentials with number 5. This number is
currently not dissected in packet-rpc.c, but I also doubt IANA assigned
this number to the Gluster protocols. What would be the best way to add an
implementation to dissect the credentials in the RPC-header?

a) just dissect any number 5 flavour as Gluster-credentials


Google around to see if others may have (ab)used this number as well. If
not, I'd just dissect it as Gluster's - with a comment in the code
explaining it is non registered to Gluster (and worth shooting an email to
the gluster dev list asking if they intend to register it).

Thanks for the response!

Okay, so I could not find any references to any RPC protocol that implements AUTH-flavor '5' (AUTH_RSA). I've informed the Gluster developers that they can/should register RPC numbers (programs and AUTH-flavor) at IANA.

Bug 7190 contains the changes need to dissect AUTH_RSA as the format used by Gluster. I appreciate feedback about those changes in the Bug.

Thanks again,
Niels