how does wireshark support quic decryption

cibinjacobalex
1 ●1 ●2 ●2

Hi All, I'm doing a project on quic, i'm really interested to learn more about quic and its multiple versions, does any one how wireshark is able to decryp the quic packets ? i have gone through multiple RFC versions and still not able to understand properly how we can decrypt. Any help would be much appreciated. Regards Cibin

answered May 14 '19

grahamb

flag of United Kingdom of Great Britain and Northern Ireland

23850 ●4 ●988 ●227 https://www.wireshark.org

Use the source Luke, admittedly there is a lot of it, so to help you the dissector for QUIC is here.

link

Comments

Thank you so much Grahamb, i have been looking at the code, how can i get more info on this function ? any idea where this function is defined/works.

  if (!tls13_get_quic_secret(pinfo, from_server, type, hash_len, secret)) {
         *error = "Secrets are not available";
         return FALSE;

cibinjacobalex ( May 17 '19 )

Around line 3798 in packet-tls.c.

grahamb ( May 17 '19 )

add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

how does wireshark support quic decryption

1 Answer

Comments

Your Answer

Question Tools

Stats

Related questions

how does wireshark support quic decryption savecancel

1 Answer

Comments

Your Answer

Question Tools

Stats

Related questions

how does wireshark support quic decryption