Ask Your Question
0

Does the LUA dissector API support conversation analysis?

asked 2018-05-30 21:24:59 +0000

I am writing a dissector for a UDP based protocol that has re-implemented a reliable message delivery using sequence and ack numbers. I've started via the LUA API but now I am running into an absence of information on how to do conversation analysis using the LUA dissector API.

Does the LUA dissector API support conversational analysis?

edit retag flag offensive close merge delete

Comments

Can you be more precise on what you expect? I remember you can set pinfo.something to indicate the request/response relationship, but I'm afraid you'll on your own if you want to implement more.

sindy gravatar imagesindy ( 2018-05-31 12:05:43 +0000 )edit

I want to essentially replicate a lot of the TCP Seq/ack analysis, including timing, but on top of this UDP-based protocol. I found doc/README.request_response_tracking which points to the proto_pana dissector as an example/. That dissector uses conversation_add_proto_data() to add pana_specific info.

[edited to escape the underscores]

kedmison gravatar imagekedmison ( 2018-05-31 12:39:32 +0000 )edit

1 Answer

Sort by ยป oldest newest most voted
0

answered 2018-07-10 14:37:10 +0000

cmaynard gravatar image

As far as I'm aware, it's not yet possible to perform request/response tracking with Lua dissectors. I would recommend opening a Wireshark enhancement bug report asking for this very useful feature to be added.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2018-05-30 21:24:59 +0000

Seen: 65 times

Last updated: Jul 10