Ethereal: Re: [Ethereal-dev] Patch for uuid strings in dcerpc dissectors

Ethereal-dev: November 2002

Subject: Re: [Ethereal-dev] Patch for uuid strings in dcerpc dissectors
From: "Ronnie Sahlberg" <ronnie_sahlberg@xxxxxxxxxxxxxx>
Date: Sun, 3 Nov 2002 09:37:12 +1100

Checked in with a small change to packet-dcerpc-ndr.c
I think it is more likely the uuid in dissect_ndr_uuid_t() is known to
ethereal and has a name
so that one instead gets the protoname instead of the uuid as the item
value.


From: "Jean-Baptiste Marchand
Subject: [Ethereal-dev] Patch for uuid strings in dcerpc dissectors


> Hello,
>
> the main dcerpc dissector uses the literal string "HMMM" to store uuid
> found in dcerpc packets. As a consequence, it is not possible to use
> display filters to filter, for example, dcerpc packets on object uuid.
>
> The attached patch tries to correct this. It modifies packet-dcerpc.c
> and packet-dcerpc-ndr.c, which contains the dissect_ndr_uuid_t()
> function, used by conversation manager and endpoint mapper dissectors
> when they need to extract uuids (dissect_ndr_uuid_t() used an empty
> string instead of "HMMM").

Follow-Ups:
- Re: [Ethereal-dev] Patch for uuid strings in dcerpc dissectors
  - From: Guy Harris

References:
- [Ethereal-dev] Patch for uuid strings in dcerpc dissectors
  - From: Jean-Baptiste Marchand

Prev by Date: Re: [Ethereal-dev] New dissector: IBM RPL (Remote Program Load) protocol
Next by Date: Re: [Ethereal-dev] AIX 'iptrace' format and FDDI
Previous by thread: [Ethereal-dev] Patch for uuid strings in dcerpc dissectors
Next by thread: Re: [Ethereal-dev] Patch for uuid strings in dcerpc dissectors
Index(es):
- Date
- Thread