Wireshark-dev: Re: [Wireshark-dev] Remove our bundled crypto library (in favor of Libgcrypt)?
From: Guy Harris <[email protected]>
Date: Sat, 11 Feb 2017 14:10:04 -0800
On Feb 11, 2017, at 1:57 PM, Bálint Réczey <[email protected]> wrote:

> +1 for going without a new layer of indirections.
> Making libgcrypt mandatory is easy and every level of indirection make
> understanding the code harder which is a source of bugs.


Enough places in Wireshark use it, and there will probably be, over time, 1) more encryption in protocols and 2) more calls for Wireshark to do decryption whenever possible, so I consider it worthy of deeming an essential support library for packet analysis.

If you want a small tool to run on devices, put a *capture* tool there and do the *analysis* on something big enough to do the job.