Wireshark-commits: [Wireshark-commits] master b8f9448: SMB2: try to guess encryption settings when
From: Wireshark code review <code-review-do-not-reply@xxxxxxxxxxxxx>
Date: Sun, 23 Feb 2020 06:13:38 +0000
URL: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=b8f9448c7887729ce82efeb097da01b9f8d246de
Submitter: "Alexis La Goutte <alexis.lagoutte@xxxxxxxxx>"
Changed: branch: master
Repository: wireshark

Commits:

b8f9448 by Aurelien Aptel (aaptel@xxxxxxxx):

    SMB2: try to guess encryption settings when not available
    
    When dissecting a capture made in the middle of an existing encrypted
    session we cannot decrypt the traffic because we don't know:
    
    * what SMB dialect and encryption algorithm was picked during the
      session establishment
    * which host is the server and which host is the client
    
    Since we know the decrypted payload always starts with a valid header
    we use this as an heuristic and try all possible decryption settings.
    
    Change-Id: I1daa297ced98e62cf361b9022871c668e56f8f4b
    Reviewed-on: https://code.wireshark.org/review/36136
    Reviewed-by: Peter Wu <peter@xxxxxxxxxxxxx>
    Petri-Dish: Peter Wu <peter@xxxxxxxxxxxxx>
    Tested-by: Petri Dish Buildbot
    Reviewed-by: Alexis La Goutte <alexis.lagoutte@xxxxxxxxx>
    

Actions performed:

    from  95a37ff   SMB2: allow users to give decryption keys directly
     add  b8f9448   SMB2: try to guess encryption settings when not available


Summary of changes:
 epan/dissectors/packet-smb2.c | 222 ++++++++++++++++++++++++++++--------------
 test/suite_decryption.py      |   4 +-
 2 files changed, 153 insertions(+), 73 deletions(-)