Does the LUA dissector API support conversation analysis?

asked 2018-05-30 21:24:59 +0000

I am writing a dissector for a UDP based protocol that has re-implemented a reliable message delivery using sequence and ack numbers. I've started via the LUA API but now I am running into an absence of information on how to do conversation analysis using the LUA dissector API.

Does the LUA dissector API support conversational analysis?

edit retag flag offensive close merge delete


Can you be more precise on what you expect? I remember you can set pinfo.something to indicate the request/response relationship, but I'm afraid you'll on your own if you want to implement more.

sindy gravatar imagesindy ( 2018-05-31 12:05:43 +0000 )edit

I want to essentially replicate a lot of the TCP Seq/ack analysis, including timing, but on top of this UDP-based protocol. I found doc/README.request_response_tracking which points to the proto_pana dissector as an example/. That dissector uses conversation_add_proto_data() to add pana_specific info.

[edited to escape the underscores]

kedmison gravatar imagekedmison ( 2018-05-31 12:39:32 +0000 )edit