Wireshark · Wireshark-dev: Re: [Wireshark-dev] Adding decryption keys at "runtime" (dissection time)

Wireshark-dev: Re: [Wireshark-dev] Adding decryption keys at "runtime" (dissection time)

From: Stig Bjørlykke <stig@xxxxxxxxxxxxx>

Date: Fri, 24 Mar 2017 13:08:48 +0100

On Tue, Mar 21, 2017 at 10:07 PM, Michael Mann <mmann78@xxxxxxxxxxxx> wrote:
> There are currently two outstanding patches
> (https://code.wireshark.org/review/20585 and
> https://code.wireshark.org/review/20656) that want to modify a UAT at
> runtime for additional decryption keys/information found during dissection.

Remember that a UAT can be part of a profile and the profile can be
changed during capture.
I don't know if this will work out-of-the-box (because the modified
UAT will not be saved and changing profile will redissect), but it has
to be tested with the selected implementation.

-- 
Stig Bjørlykke

References:
- [Wireshark-dev] Adding decryption keys at "runtime" (dissection time)
  - From: Michael Mann

Prev by Date: Re: [Wireshark-dev] Adding decryption keys at "runtime" (dissection time)
Next by Date: [Wireshark-dev] RTP player - a suggestion
Previous by thread: Re: [Wireshark-dev] Adding decryption keys at "runtime" (dissection time)
Next by thread: [Wireshark-dev] RTP player - a suggestion
Index(es):
- Date
- Thread