Wireshark-dev: Re: [Wireshark-dev] contribution: OpenChange dissector for NSPI protocol
i have added policy handle tracking to the nspi.cnf file
i also converted the restrictiontypes into an enum which is much
better than just a list of defines and a uint32
please consider changing all other such types into proper enums as well
On 11/6/06, Julien Kerihuel <j.kerihuel@xxxxxxxxxxxxxx> wrote:
The NSPI PCAP file is available on the Wiki:
http://wiki.wireshark.org/SampleCaptures#head-21fafc22e7de823b20936a27f0815bd188ac17b8
Regards.
On Mon, 2006-11-06 at 11:57 +1100, ronnie sahlberg wrote:
> "I've filtered out a capture file with all the NSPI commands
> implemented in the
> dissector. Is "SampleCapture - DCE/RPC and MSRPC-based protocols" the
> right
> place to upload the capture file?"
>
> Yes, that is the correct place.
>
>
>
> On 11/6/06, Julien Kerihuel <j.kerihuel@xxxxxxxxxxxxxx> wrote:
> On Sunday 05 November 2006 07:19, ronnie sahlberg wrote:
> > 2, have a look at the winreg.cnf conformance file, the
> section about
> > tracking policy handles.
> > This feature will add an expansion to policy handles to tell
> the user
> > in which frame they were opened/created or closed/destroyed
> >
>
> Done. I've attached the cnf file.
>
> >
> > 3, can out add a nice page to the wiki and a few example
> captures
> > containing as many as possible of the NSPI commands?
>
> I've filtered out a capture file with all the NSPI commands
> implemented in the
> dissector. Is "SampleCapture - DCE/RPC and MSRPC-based
> protocols" the right
> place to upload the capture file?
> If it's ok, I'll add a "Name Service Provider Interface MSRPC
> interface"
> section and upload a complete MAPI profile creation pcap
> file.
>
> > On 11/4/06, Julien Kerihuel <j.kerihuel@xxxxxxxxxxxxxx>
> wrote:
> > > The NspiGetMatches issue is fixed.
> > >
> > > No modifications have been brought to the IDL, only fixes
> in
> > > Wireshark/NDR.pm
> > > (branch SAMBA_4_0 Wireshark/NDR.pm) with rev 19559.
> > >
> > > Regards.
> > >
> > > On Saturday 04 November 2006 19:00, Joerg Mayer wrote:
> > > > On Sat, Nov 04, 2006 at 05:38:18AM +0200, Julien
> Kerihuel wrote:
> > > > > some news about the NSPI dissector
> improvements/bugs/fixes:
> > > > >
> > > > > The new version of the dissector will compile without
> any patches to
> > > > > apply to Wireshark/NDR.pm. Jelmer has improved the
> patch and pidl now
> > > > > support enums as return type. Regarding the nspi.cnf
> file, it won't
> > > > > be useful anymore.
> > > > >
> > > > > Regarding the dissector, I've noticed a bug in
> NspiGetMatches which
> > >
> > > isn't
> > >
> > > > > dumped correctly. I'm currently investigating the
> problem and I'll
> > >
> > > notify
> > >
> > > > > the list when a fixed version is available.
> > > >
> > > > Checked into the wireshark source (./idl/nspi/) and the
> main dissector
> > > > repo.
> > > >
> > > > Committed revision 19794.
> > > >
> > > > thanks
> > > > Joerg
> > > > _______________________________________________
> > > > Wireshark-dev mailing list
> > > > Wireshark-dev@xxxxxxxxxxxxx
> > > > http://www.wireshark.org/mailman/listinfo/wireshark-dev
> > >
>
> --
> Julien Kerihuel
> j.kerihuel@xxxxxxxxxxxxxx
> OpenChange Project Manager
>
> GnuPG Key:
> http://jkerihuel.openchange.org/keys/kerihuel_gpg_public.asc
>
>
>
>
> _______________________________________________
> Wireshark-dev mailing list
> Wireshark-dev@xxxxxxxxxxxxx
> http://www.wireshark.org/mailman/listinfo/wireshark-dev
>
>
>
> _______________________________________________
> Wireshark-dev mailing list
> Wireshark-dev@xxxxxxxxxxxxx
> http://www.wireshark.org/mailman/listinfo/wireshark-dev
--
Julien Kerihuel
j.kerihuel@xxxxxxxxxxxxxx
OpenChange Project Manager
GnuPG Key: http://jkerihuel.openchange.org/keys/kerihuel_gpg_public.asc