Hi all,
I wasn't sure the right place to post this patch so I post on the 2
mailing list....
It's a new patch (and certainly the last of me) for SSL and DTLS decryption.
The SSL one isn't new, it correct some bugs .... (like alert decryption)
The DTLS dissector is a new one, I have based my work on OpenSSL
implementation.
This implementation contains lots of errors (DTLS Version, Mac
calculation, doesn't support for packet loss, reordering or
fragmentation). I have done that I could with this but this is far to
be perfect (for the Mac calculation the good version following RFC is
commented out in source code), I couldn't implement dissection of
things not implemented yet.
You could try it with joined file and give me your opinions ;)
The base dissection work correctly and decryption too but the
fragmentation, reordering, all things that make UDP aren't
implemented.
I haven't made clear séparation bitween DTLS and SSL dissector (they
are very similar) because I'm not sure about integration process in
ethereal (wireshark...)
I hope this could help someone ;)
--
++++++++++++++++++++++++++
+ Authesserre Samuel +
+ 12 rue de la défense passive+
+ 14000 CAEN +
+ FRANCE +
+ 06-27-28-13-32 +
+ sauthess@gmail.com +
++++++++++++++++++++++++++
I wasn't sure the right place to post this patch so I post on the 2
mailing list....
It's a new patch (and certainly the last of me) for SSL and DTLS decryption.
The SSL one isn't new, it correct some bugs .... (like alert decryption)
The DTLS dissector is a new one, I have based my work on OpenSSL
implementation.
This implementation contains lots of errors (DTLS Version, Mac
calculation, doesn't support for packet loss, reordering or
fragmentation). I have done that I could with this but this is far to
be perfect (for the Mac calculation the good version following RFC is
commented out in source code), I couldn't implement dissection of
things not implemented yet.
You could try it with joined file and give me your opinions ;)
The base dissection work correctly and decryption too but the
fragmentation, reordering, all things that make UDP aren't
implemented.
I haven't made clear séparation bitween DTLS and SSL dissector (they
are very similar) because I'm not sure about integration process in
ethereal (wireshark...)
I hope this could help someone ;)
--
++++++++++++++++++++++++++
+ Authesserre Samuel +
+ 12 rue de la défense passive+
+ 14000 CAEN +
+ FRANCE +
+ 06-27-28-13-32 +
+ sauthess@gmail.com +
++++++++++++++++++++++++++