Wireshark-dev: Re: [Wireshark-dev] contribution: OpenChange dissector for NSPI protocol
From: "ronnie sahlberg" <ronniesahlberg@xxxxxxxxx>
Date: Mon, 6 Nov 2006 20:48:50 +0000
i have added policy handle tracking to the nspi.cnf file

i also converted the restrictiontypes into an enum    which is much
better than just a list of defines and a uint32


please consider changing all other such types into proper enums as well

On 11/6/06, Julien Kerihuel <j.kerihuel@xxxxxxxxxxxxxx> wrote:
The NSPI PCAP file is available on the Wiki:

http://wiki.wireshark.org/SampleCaptures#head-21fafc22e7de823b20936a27f0815bd188ac17b8

Regards.

On Mon, 2006-11-06 at 11:57 +1100, ronnie sahlberg wrote:
> "I've filtered out a capture file with all the NSPI commands
> implemented in the
> dissector. Is "SampleCapture - DCE/RPC and MSRPC-based protocols" the
> right
> place to upload the capture file?"
>
> Yes, that is the correct place.
>
>
>
> On 11/6/06, Julien Kerihuel <j.kerihuel@xxxxxxxxxxxxxx> wrote:
>         On Sunday 05 November 2006 07:19, ronnie sahlberg wrote:
>         > 2, have a look at the winreg.cnf conformance file, the
>         section about
>         > tracking policy handles.
>         > This feature will add an expansion to policy handles to tell
>         the user
>         > in which frame they were opened/created or closed/destroyed
>         >
>
>         Done. I've attached the cnf file.
>
>         >
>         > 3,  can out add a nice page to the wiki and a few example
>         captures
>         > containing as many as possible of the NSPI commands?
>
>         I've filtered out a capture file with all the NSPI commands
>         implemented in the
>         dissector. Is "SampleCapture - DCE/RPC and MSRPC-based
>         protocols" the right
>         place to upload the capture file?
>         If it's ok, I'll add a "Name Service Provider Interface MSRPC
>         interface"
>         section and upload a complete MAPI profile creation pcap
>         file.
>
>         > On 11/4/06, Julien Kerihuel <j.kerihuel@xxxxxxxxxxxxxx>
>         wrote:
>         > > The NspiGetMatches issue is fixed.
>         > >
>         > > No modifications have been brought to the IDL, only fixes
>         in
>         > > Wireshark/NDR.pm
>         > > (branch SAMBA_4_0 Wireshark/NDR.pm) with rev 19559.
>         > >
>         > > Regards.
>         > >
>         > > On Saturday 04 November 2006 19:00, Joerg Mayer wrote:
>         > > > On Sat, Nov 04, 2006 at 05:38:18AM +0200, Julien
>         Kerihuel wrote:
>         > > > > some news about the NSPI dissector
>         improvements/bugs/fixes:
>         > > > >
>         > > > > The new version of the dissector will compile without
>         any patches to
>         > > > > apply to Wireshark/NDR.pm. Jelmer has improved the
>         patch and pidl now
>         > > > > support enums as return type. Regarding the nspi.cnf
>         file, it won't
>         > > > > be useful anymore.
>         > > > >
>         > > > > Regarding the dissector, I've noticed a bug in
>         NspiGetMatches which
>         > >
>         > > isn't
>         > >
>         > > > > dumped correctly. I'm currently investigating the
>         problem and I'll
>         > >
>         > > notify
>         > >
>         > > > > the list when a fixed version is available.
>         > > >
>         > > > Checked into the wireshark source (./idl/nspi/) and the
>         main dissector
>         > > > repo.
>         > > >
>         > > > Committed revision 19794.
>         > > >
>         > > > thanks
>         > > >      Joerg
>         > > > _______________________________________________
>         > > > Wireshark-dev mailing list
>         > > > Wireshark-dev@xxxxxxxxxxxxx
>         > > > http://www.wireshark.org/mailman/listinfo/wireshark-dev
>         > >
>
>         --
>         Julien Kerihuel
>         j.kerihuel@xxxxxxxxxxxxxx
>         OpenChange Project Manager
>
>         GnuPG Key:
>         http://jkerihuel.openchange.org/keys/kerihuel_gpg_public.asc
>
>
>
>
>         _______________________________________________
>         Wireshark-dev mailing list
>         Wireshark-dev@xxxxxxxxxxxxx
>         http://www.wireshark.org/mailman/listinfo/wireshark-dev
>
>
>
> _______________________________________________
> Wireshark-dev mailing list
> Wireshark-dev@xxxxxxxxxxxxx
> http://www.wireshark.org/mailman/listinfo/wireshark-dev

--
Julien Kerihuel
j.kerihuel@xxxxxxxxxxxxxx
OpenChange Project Manager

GnuPG Key: http://jkerihuel.openchange.org/keys/kerihuel_gpg_public.asc