Wireshark-dev: Re: [Wireshark-dev] micro-patch for decryption of telnet-tls and syslog-tls
From: Jaap Keuter <jaap.keuter@xxxxxxxxx>
Date: Sat, 17 Nov 2012 13:19:50 +0100
Hi Stephen,

Normally we would ask you to go through bugs.wireshark.org for patches, just so the are tracked, not forgotten and can be discussed when needed. Since these are straight forward ones I've picked them up anyway. Committed revision 46057.

As for the OIDs, you might have to look in asn1/X509af, as least that's my best guess.

Thanks,
Jaap

PS: that's an interesting OID I must say; http://www.oid-info.com/get/0.9



On 11/16/2012 09:57 PM, Wall, Stephen wrote:
Hi folks.  I've included a small patch against the current wireshark trunk that I would be happy to see included in an upcoming release.  It allows one to specify telnet or syslog as the protocol in an SSL Decrypt profile.  Also, I'd like to add an OID to the RDN dissector, can anyone provide pointers for what I need to modify?  Specifically, I want to add support for OID 0.9.2342.19200300.100.1.1, UserID, to the certificate parsing code.

Thanks...
- Steve Wall


--- ./epan/dissectors/packet-syslog.c.orig        2012-11-16 15:07:54.735527000 -0500
+++ ./epan/dissectors/packet-syslog.c     2012-11-16 15:08:29.964168000 -0500
@@ -346,6 +346,8 @@ void proto_register_syslog(void)
    /* Required function calls to register the header fields and subtrees used */
    proto_register_field_array(proto_syslog, hf, array_length(hf));
    proto_register_subtree_array(ett, array_length(ett));
+
+  register_dissector("syslog", dissect_syslog, proto_syslog);
  }

  void
--- ./epan/dissectors/packet-telnet.c.orig        2012-11-16 15:07:59.820031000 -0500
+++ ./epan/dissectors/packet-telnet.c     2012-11-16 15:08:54.343731000 -0500
@@ -2020,6 +2020,8 @@ proto_register_telnet(void)
    proto_telnet = proto_register_protocol("Telnet", "TELNET", "telnet");
    proto_register_field_array(proto_telnet, hf, array_length(hf));
    proto_register_subtree_array(ett, array_length(ett));
+
+  register_dissector("telnet", dissect_telnet, proto_telnet);
  }

  void