osmocom
/
wireshark
14
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
16,271 Commits 26 Branches 0 Tags 795 MiB
Commit Graph

83 Commits

Author SHA1 Message Date
Ronnie Sahlberg 55beaa37cf add endoffile infolevel 
svn path=/trunk/; revision=16607
 2005-11-26 21:59:48 +00:00
Ronnie Sahlberg f699f011fc more infolevels 
svn path=/trunk/; revision=16606
 2005-11-26 21:44:37 +00:00
Ronnie Sahlberg 81c46d4c59 update setinfo response dissection 
svn path=/trunk/; revision=16605
 2005-11-26 21:09:53 +00:00
Ronnie Sahlberg d107130cd4 many commands return a short 8 byte pdu when errors occur. 
make ethereal handle these better instead of showing them as unreassembled packet



svn path=/trunk/; revision=16598
 2005-11-26 03:06:21 +00:00
Ronnie Sahlberg d149d98fc3 assume the four bytes after the fid in notify request is the completion mask 
svn path=/trunk/; revision=16596
 2005-11-26 00:34:22 +00:00
Ronnie Sahlberg 7773d60b9a add decoding of some more opcodes 
svn path=/trunk/; revision=16594
 2005-11-25 23:52:47 +00:00
Ronnie Sahlberg 808f2fc111 add decoding of some more opcodes 
svn path=/trunk/; revision=16590
 2005-11-25 22:06:56 +00:00
Ronnie Sahlberg 85cfb618f9 from metze and modified, fix for in offset/length for transaction request 
svn path=/trunk/; revision=16589
 2005-11-25 21:55:34 +00:00
Ronnie Sahlberg 0f9be028ca add dissection of treedisconnect 
svn path=/trunk/; revision=16586
 2005-11-25 08:26:02 +00:00
Ronnie Sahlberg 704abdc0e5 add some more infolevels 
svn path=/trunk/; revision=16585
 2005-11-25 08:02:40 +00:00
Ronnie Sahlberg ebe4645322 fix typo it is one in buffer and one out buffer in transaction request not two out buffers 
svn path=/trunk/; revision=16584
 2005-11-25 06:45:50 +00:00
Ronnie Sahlberg cdec2dd031 transaction update 
svn path=/trunk/; revision=16583
 2005-11-25 06:30:47 +00:00
Ronnie Sahlberg 261aade300 add dissection of the smb2 impersionationlevel field 
svn path=/trunk/; revision=16581
 2005-11-25 06:19:41 +00:00
Ronnie Sahlberg c76c376968 some info level updates 
svn path=/trunk/; revision=16580
 2005-11-25 06:04:11 +00:00
Ronnie Sahlberg cfc56af514 some info level updates 
svn path=/trunk/; revision=16579
 2005-11-25 05:41:00 +00:00
Ronnie Sahlberg d93bd8606c update the transaction code 
svn path=/trunk/; revision=16578
 2005-11-25 00:28:02 +00:00
Ronnie Sahlberg 64181a533c dissect some more of SMB2 Transaction command 
svn path=/trunk/; revision=16577
 2005-11-24 15:24:30 +00:00
Ronnie Sahlberg 22d2f325ea dissect some of opcode 0x0b Transaction 
svn path=/trunk/; revision=16576
 2005-11-24 14:49:46 +00:00
Ronnie Sahlberg 8bcb4b47e6 from Metze 
generalize the offset/length/buffer   handling
and make some code much nicer


svn path=/trunk/; revision=16557
 2005-11-21 20:37:43 +00:00
Ronnie Sahlberg a54d3e960b fix bug 588 and friends 
svn path=/trunk/; revision=16549
 2005-11-19 10:03:16 +00:00
Ronnie Sahlberg 49499c1b96 the 4 bytes in MxAc are access maxk not file attributes 
svn path=/trunk/; revision=16548
 2005-11-19 03:19:56 +00:00
Ronnie Sahlberg 7e45fb1755 prettification 
svn path=/trunk/; revision=16547
 2005-11-19 03:15:39 +00:00
Ronnie Sahlberg 6de5370105 decode the extra blob at the end of Create calls 
svn path=/trunk/; revision=16546
 2005-11-19 02:24:22 +00:00
Ronnie Sahlberg ad65921598 update to SMB2_FILE_ALL_INFO dissection 
prettify dissection of some strings


svn path=/trunk/; revision=16545
 2005-11-18 21:59:05 +00:00
Ronnie Sahlberg 3f047721a3 dissect some more infolevels 
svn path=/trunk/; revision=16543
 2005-11-18 07:31:18 +00:00
Ronnie Sahlberg 3afd94f519 add dissection of more infolevels for smb2 
svn path=/trunk/; revision=16539
 2005-11-17 22:30:19 +00:00
Ronnie Sahlberg e5b6a6426b add dissection of fs_[objectid|full_size]_info 
svn path=/trunk/; revision=16538
 2005-11-17 14:22:11 +00:00
Ronnie Sahlberg 6ac4fe9a25 add dissection of fs quota info 
svn path=/trunk/; revision=16537
 2005-11-17 14:00:07 +00:00
Ronnie Sahlberg 1b809cfcd7 add full dissection of fs_[volume|size|device|atrtibute]_info 
svn path=/trunk/; revision=16536
 2005-11-17 13:43:22 +00:00
Ronnie Sahlberg 675d0862b5 add dissection of the security descriptor mask 
svn path=/trunk/; revision=16535
 2005-11-17 12:30:36 +00:00
Ronnie Sahlberg 57c5bffa85 decode the create flags 
svn path=/trunk/; revision=16529
 2005-11-17 08:21:53 +00:00
Ronnie Sahlberg b8cb0d07b8 add more updates from the wiki 
svn path=/trunk/; revision=16528
 2005-11-17 07:32:17 +00:00
Ronnie Sahlberg 5d24bf785a start updating the dissector from wiki updates done 
svn path=/trunk/; revision=16527
 2005-11-17 07:04:41 +00:00
Ronnie Sahlberg 04f785f836 add dissection of buffercode 
according to
wiki.etehreal.com/SMB2/BufferCode



svn path=/trunk/; revision=16512
 2005-11-16 10:59:41 +00:00
Ronnie Sahlberg 5bc41c76b0 add decoding of extended attributes 
svn path=/trunk/; revision=16506
 2005-11-15 08:49:34 +00:00
Ronnie Sahlberg ae6cc5a6f2 some more infol;evels decoded 
svn path=/trunk/; revision=16503
 2005-11-14 12:06:39 +00:00
Ronnie Sahlberg 5244ca9cdd prettify read/write 
svn path=/trunk/; revision=16497
 2005-11-12 23:17:06 +00:00
Ronnie Sahlberg 6124eac224 prettify smb2 
always put the filename in col_info if it is known

for getinfo/setinfo  put the class/level in colinfo as well.


this makes it very easy to see in the packet summary which file a icommand applies to and what kind of info is requested



svn path=/trunk/; revision=16496
 2005-11-12 23:05:29 +00:00
Ronnie Sahlberg 5940b03d12 if we get the error BUTTER_TOO_SMALL coming back in a getinfo reply the data will just be 4 bytes and will contain the required buffer size 
svn path=/trunk/; revision=16493
 2005-11-12 21:14:17 +00:00
Ronnie Sahlberg 0097584f2e the timestamps of negprot are known 
svn path=/trunk/; revision=16491
 2005-11-12 11:42:06 +00:00
Ronnie Sahlberg 15f13b23a0 improve the dissection of Create and fill in most of the fields 
svn path=/trunk/; revision=16490
 2005-11-12 11:27:34 +00:00
Ronnie Sahlberg 8b68d91039 dissect more of Close request/response 
svn path=/trunk/; revision=16487
 2005-11-12 10:07:12 +00:00
Ronnie Sahlberg 728323e533 add initial decode of dcerpc over smb2 
it does not yet multiplex between different files   but it is better than nothing


svn path=/trunk/; revision=16484
 2005-11-12 08:48:02 +00:00
Ronnie Sahlberg bc6cb5d6ad in order to handle dcerpc over smb2 later and to make the heuristics stronger for determining what might and what might not be a pipe 
add   TID tracking.   for all TreeConnect requests/resposnes seen,   store the name->tid mapping and other metadata.


as a freebee    the disswection of the tid in the ehader is aware of this table so when a tid value is dissected in the header and we known the name for this tid   then put it in an expansion below the tid.




svn path=/trunk/; revision=16483
 2005-11-12 07:45:01 +00:00
Ronnie Sahlberg 9ca683a249 start separating things out into structures 
we can regenerate from the header
we need to remember between request/response
we need on a per conersation bases

to reduce the amount of data we store in the per req/resp  pair  since there will be many of them and we want that struct as small as possible.




svn path=/trunk/; revision=16482
 2005-11-12 04:23:52 +00:00
Jörg Mayer 66df615702 Propset svn:... 
svn path=/trunk/; revision=16478
 2005-11-12 00:25:27 +00:00
Ronnie Sahlberg ebcdb60414 in smb2 the file handles are not normal context handles they are just a guid 
make them a guid in smb2 dissector and make tim pottesr excellent conmtext handle tracking also able to do the same thing for GUIDs


( a context handle is just a 32 biut attribute field followed by a uuid anyway)




svn path=/trunk/; revision=16477
 2005-11-11 22:12:10 +00:00
Ronnie Sahlberg 574717c28d start decoding notify requests 
svn path=/trunk/; revision=16475
 2005-11-11 12:49:42 +00:00
Ronnie Sahlberg 756520be42 dissect READ packets 
svn path=/trunk/; revision=16474
 2005-11-11 11:35:10 +00:00
Ronnie Sahlberg 6250873db4 write offset is 32 bits so is write length 
svn path=/trunk/; revision=16473
 2005-11-11 11:14:14 +00:00