[Wireshark-bugs] [Bug 13918] Failed to export HTTP objects from an "export-PDU" file

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13918

Peter Wu  changed:

   What|Removed |Added

 CC||pe...@lekensteyn.nl
 Status|UNCONFIRMED |IN_PROGRESS
 Ever confirmed|0   |1

--- Comment #1 from Peter Wu  ---
Can you try the following patch? (I need to check whether this is required for
2.2.x too). It will not recognize the attached pcap, but fix the Export feature
not to expose the wrong protocol.
--
diff --git a/epan/dissectors/packet-ssl.c b/epan/dissectors/packet-ssl.c
index 848fff1ef3..c600a06d09 100644
--- a/epan/dissectors/packet-ssl.c
+++ b/epan/dissectors/packet-ssl.c
@@ -1496,8 +1496,14 @@ again:
 static void
 export_pdu_packet(tvbuff_t *tvb, packet_info *pinfo, guint8 tag, const gchar
*name)
 {
-exp_pdu_data_t *exp_pdu_data = export_pdu_create_common_tags(pinfo, name,
tag);
+exp_pdu_data_t *exp_pdu_data;

+/* TLS layer is stripped, so use plain "http" protocol instead. */
+if (!strcmp(name, "http-over-tls")) {
+name = "http";
+}
+
+exp_pdu_data = export_pdu_create_common_tags(pinfo, name, tag);
 exp_pdu_data->tvb_captured_length = tvb_captured_length(tvb);
 exp_pdu_data->tvb_reported_length = tvb_reported_length(tvb);
 exp_pdu_data->pdu_tvb = tvb;

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13918] New: Failed to export HTTP objects from an "export-PDU" file

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13918

Bug ID: 13918
   Summary: Failed to export HTTP objects from an "export-PDU"
file
   Product: Wireshark
   Version: 2.4.0
  Hardware: All
OS: All
Status: UNCONFIRMED
  Severity: Major
  Priority: Low
 Component: Dissection engine (libwireshark)
  Assignee: bugzilla-ad...@wireshark.org
  Reporter: frank3...@gmail.com
  Target Milestone: ---

Created attachment 15714
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=15714=edit
The file that failed to export http objects

Build Information:
TShark (Wireshark) 2.4.0 (v2.4.0)

Copyright 1998-2017 Gerald Combs  and contributors.
License GPLv2+: GNU GPL version 2 or later

This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with libpcap, with POSIX capabilities (Linux), without libnl,
with GLib 2.46.2, with zlib 1.2.7, with SMI 0.4.8, with c-ares 1.10.0, without
Lua, with GnuTLS 3.3.24, with Gcrypt 1.5.3, with MIT Kerberos, with GeoIP,
without nghttp2, with LZ4, with Snappy, with libxml2 2.9.1.

Running on Linux 3.10.0-327.13.2.cisco.el7.x86_64, with   Intel(R) Xeon(R)
CPU E5-2680 v2 @ 2.80GHz (with SSE4.2), with 3947 MB of physical memory, with
locale en_US.UTF-8, with libpcap version 1.5.3, with GnuTLS 3.3.24, with Gcrypt
1.5.3, with zlib 1.2.7.

Built using gcc 4.8.5 20150623 (Red Hat 4.8.5-11).
--
Steps to reproduce:

1. open the "export-PDU" pcap file in wireshark
2. click on "Export Objects" ==> "HTTP"

You can see the objects exported by wireshark are just pieces of a file. Seems
wireshark doesn't reassemble the http payload.

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13661] Wireshark is crashing after 5-10 seconds of startup.

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13661

Guy Harris  changed:

   What|Removed |Added

 Resolution|WONTFIX |---
 Ever confirmed|0   |1
 Status|RESOLVED|INCOMPLETE

--- Comment #3 from Guy Harris  ---
(In reply to adarsh verma from comment #0)
> I have tried with latest build also same crash is observed.

Then please post the build information from the latest version - and if it's
Wireshark, post the build information from *Wireshark*, not *TShark*, so we
can, for example, see what version of Qt is being used.  We're not going to
look at bugs in Wireshark 1.10.x; we'll look at bugs in 2.4.x and in the master
branch.

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13661] Wireshark is crashing after 5-10 seconds of startup.

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13661

Michael Mann  changed:

   What|Removed |Added

 Resolution|--- |WONTFIX
 Status|UNCONFIRMED |RESOLVED

--- Comment #2 from Michael Mann  ---
Reopen if there is still an issue with a currently supported version of
Wireshark.

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13275] Wireshark crashes at startup if it needs to display a dialog early in the startup process

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13275

Guy Harris  changed:

   What|Removed |Added

 OS|macOS   |All

--- Comment #12 from Guy Harris  ---
And I just reproduced the initial crash on Ubuntu 15.10 by backing our Gerald's
fix, recompiling, and, again, running with search permission off on ~/.config,
so this isn't a macOS issue, it's a generic issue.

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13275] Wireshark crashes at startup if it needs to display a dialog early in the startup process

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13275

--- Comment #11 from Guy Harris  ---
Same crash happens on Ubuntu 15.10:

Wireshark 2.5.0 (v2.5.0rc0-519-ga62c6d5)

Copyright 1998-2017 Gerald Combs  and contributors.
License GPLv2+: GNU GPL version 2 or later

This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with Qt 5.4.2, with libpcap, with POSIX capabilities (Linux),
with libnl 3, with GLib 2.46.2, with zlib 1.2.8, with SMI 0.4.8, with c-ares
1.10.0, with Lua 5.2.4, with GnuTLS 3.3.15, with Gcrypt 1.6.3, with MIT
Kerberos, with GeoIP, without nghttp2, without LZ4, without Snappy, without
libxml2, without QtMultimedia, without AirPcap, without SBC, without SpanDSP.

Running on Linux 4.2.0-42-generic, with Intel(R) Core(TM) i7-4980HQ CPU @
2.80GHz (with SSE4.2), with 3934 MB of physical memory, with locale
en_US.UTF-8,
with libpcap version 1.9.0-PRE-GIT_2017_06_05 (with TPACKET_V3), with GnuTLS
3.3.15, with Gcrypt 1.6.3, with zlib 1.2.8.

Built using gcc 5.2.1 20151010.

ASAN:SIGSEGV
=
==20032==ERROR: AddressSanitizer: SEGV on unknown address 0x01e1 (pc
0x7f9983dc4224 bp 0x617a3000 sp 0x7fff52923258 T0)
#0 0x7f9983dc4223 in QWidget::sizePolicy() const
(/usr/lib/x86_64-linux-gnu/libQt5Widgets.so.5+0x187223)
#1 0x7f9983faafbf in QMessageBox::setCheckBox(QCheckBox*)
(/usr/lib/x86_64-linux-gnu/libQt5Widgets.so.5+0x36dfbf)
#2 0x6363db in SimpleDialog::exec()
/home/gharris/src/cmd/wireshark/ui/qt/simple_dialog.cpp:230
#3 0x4b2e0f in simple_dialog
/home/gharris/src/cmd/wireshark/ui/qt/main_window.cpp:249
#4 0xaf0bb5 in write_profile_recent
/home/gharris/src/cmd/wireshark/ui/recent.c:742
#5 0x6b2128 in WiresharkApplication::cleanup()
/home/gharris/src/cmd/wireshark/ui/qt/wireshark_application.cpp:669
#6 0x7ace77 in WiresharkApplication::qt_static_metacall(QObject*,
QMetaObject::Call, int, void**)
/home/gharris/src/cmd/wireshark/ui/qt/wireshark_application.moc.cpp:235
#7 0x7f99834f9789 in QMetaObject::activate(QObject*, int, int, void**)
(/usr/lib/x86_64-linux-gnu/libQt5Core.so.5+0x2b2789)
#8 0x7f99834ce342 in QCoreApplication::exec()
(/usr/lib/x86_64-linux-gnu/libQt5Core.so.5+0x287342)
#9 0x45533a in main /home/gharris/src/cmd/wireshark/wireshark-qt.cpp:921
#10 0x7f99821c4abf in __libc_start_main
(/lib/x86_64-linux-gnu/libc.so.6+0x20abf)
#11 0x45ca18 in _start
(/home/gharris/src/cmd/wireshark/.libs/lt-wireshark+0x45ca18)

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13915] Reassembly for IPFIX over TCP

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13915

--- Comment #1 from Gerrit Code Review  ---
Change 22792 had a related patch set uploaded by Uli Heilmeier:
Netflow: Reassemble flows spanning multiple PDUs

https://code.wireshark.org/review/22792

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13275] Wireshark crashes at startup if it needs to display a dialog early in the startup process

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13275

--- Comment #10 from Guy Harris  ---
If I run "./wireshark /non/existent/file", I get a similar crash:

ASAN:DEADLYSIGNAL
=
==3792==ERROR: AddressSanitizer: SEGV on unknown address 0x0028 (pc
0x00011fe06256 bp 0x7fff5c1610f0 sp 0x7fff5c1610e0 T0)
==3792==The signal is caused by a READ memory access.
==3792==Hint: address points to the zero page.
#0 0x11fe06255 in QWidgetPrivate::updateGeometry_helper(bool)
(QtWidgets:x86_64+0x65255)
#1 0x11fe13226 in QWidget::setSizePolicy(QSizePolicy)
(QtWidgets:x86_64+0x72226)
#2 0x11ffe4de3 in QMessageBox::setCheckBox(QCheckBox*)
(QtWidgets:x86_64+0x243de3)
#3 0x104379fac in SimpleDialog::exec() simple_dialog.cpp:230
#4 0x103ec8b10 in simple_message_box main_window.cpp:283
#5 0x104644969 in cfile_open_failure_alert_box alert_box.c:492
#6 0x103abbc41 in cf_open file.c:369
#7 0x103f94b4b in MainWindow::openCaptureFile(QString, QString, unsigned
int, int) main_window_slots.cpp:248
#8 0x103ad4198 in main wireshark-qt.cpp:843
#9 0x7fffb8662234 in start (libdyld.dylib:x86_64+0x5234)

I suspect the simple dialog isn't working if you *do* have a
WiresharkApplication.

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13275] Wireshark crashes at startup if it needs to display a dialog early in the startup process

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13275

--- Comment #9 from Guy Harris  ---
Version information for my build:

Wireshark 2.5.0 (v2.5.0rc0-519-ga62c6d56b1)

Copyright 1998-2017 Gerald Combs  and contributors.
License GPLv2+: GNU GPL version 2 or later

This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with Qt 5.5.0, with libpcap, without POSIX capabilities, with
GLib 2.36.0, with zlib 1.2.8, with SMI 0.4.8, with c-ares 1.12.0, with Lua
5.2.4, with GnuTLS 3.4.17, with Gcrypt 1.7.7, with MIT Kerberos, with GeoIP,
with nghttp2 1.14.0, with LZ4, with Snappy, with libxml2 2.9.4, with
QtMultimedia, without AirPcap, with SBC, without SpanDSP.

Running on Mac OS X 10.12.6, build 16G29 (Darwin 16.7.0), with Intel(R)
Core(TM)
i7-4980HQ CPU @ 2.80GHz (with SSE4.2), with 16384 MB of physical memory, with
locale en_US.UTF-8, with libpcap version 1.9.0-PRE-GIT_2017_03_28, with GnuTLS
3.4.17, with Gcrypt 1.7.7, with zlib 1.2.8.

Built using clang 4.2.1 Compatible Apple LLVM 8.1.0 (clang-802.0.42).

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13915] Reassembly for IPFIX over TCP

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13915

Uli Heilmeier  changed:

   What|Removed |Added

 CC||u...@heilmeier.eu
 Ever confirmed|0   |1
 Status|UNCONFIRMED |IN_PROGRESS
Version|2.2.6   |Git

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13275] Wireshark crashes at startup if it needs to display a dialog early in the startup process

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13275

Guy Harris  changed:

   What|Removed |Added

  Component|Build process   |Qt UI

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13275] Wireshark crashes at startup if it needs to display a dialog early in the startup process

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13275

--- Comment #8 from Guy Harris  ---
I tried the latest build, after turning off search (execute) permission on
~/.config, and, after dismissing the error dialog with the messages about
problems reading my configuration files and clicking the close button for the
main window, my ASAN build failed with:

ASAN:DEADLYSIGNAL
=
==2597==ERROR: AddressSanitizer: SEGV on unknown address 0xcee5de3f (pc
0x0001084b1a44 bp 0x7fff5a506360 sp 0x7fff5a506360 T0)
==2597==The signal is caused by a READ memory access.
#0 0x1084b1a43 in QWidget::sizePolicy() const (QtWidgets:x86_64+0x6fa43)
#1 0x108685dcc in QMessageBox::setCheckBox(QCheckBox*)
(QtWidgets:x86_64+0x243dcc)
#2 0x105fd4fac in SimpleDialog::exec() simple_dialog.cpp:230
#3 0x105b236d4 in simple_dialog main_window.cpp:249
#4 0x1062ba539 in write_profile_recent recent.c:742
#5 0x1060bad6e in WiresharkApplication::cleanup()
wireshark_application.cpp:669
#6 0x106281f6a in WiresharkApplication::qt_static_metacall(QObject*,
QMetaObject::Call, int, void**) wireshark_application.moc.cpp:236
#7 0x107a83b81 in QMetaObject::activate(QObject*, int, int, void**)
(QtCore:x86_64+0x212b81)
#8 0x107a537b5 in QCoreApplication::exec() (QtCore:x86_64+0x1e27b5)
#9 0x10572fab5 in main wireshark-qt.cpp:921
#10 0x7fffb8662234 in start (libdyld.dylib:x86_64+0x5234)

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13917] New: DIS Dissector Entity Appearance Record displayed in wrong location

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13917

Bug ID: 13917
   Summary: DIS Dissector Entity Appearance Record displayed in
wrong location
   Product: Wireshark
   Version: 2.4.0
  Hardware: x86-64
OS: Windows 10
Status: UNCONFIRMED
  Severity: Minor
  Priority: Low
 Component: Dissection engine (libwireshark)
  Assignee: bugzilla-ad...@wireshark.org
  Reporter: larry.her...@ngc.com
  Target Milestone: ---

Build Information:
Version 2.4.0 (v2.4.0-0-g9be0fa500d)

Copyright 1998-2017 Gerald Combs  and contributors.
License GPLv2+: GNU GPL version 2 or later

This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with Qt 5.9.1, with WinPcap (4_1_3), with GLib 2.42.0, with
zlib 1.2.8, with SMI 0.4.8, with c-ares 1.12.0, with Lua 5.2.4, with GnuTLS
3.4.11, with Gcrypt 1.7.6, with MIT Kerberos, with GeoIP, with nghttp2 1.14.0,
with LZ4, with Snappy, with libxml2 2.9.4, with QtMultimedia, with AirPcap,
with SBC, with SpanDSP.

Running on 64-bit Windows 10, build 10586, with Intel(R) Core(TM) i5-6500 CPU @
3.20GHz (with SSE4.2), with 8072 MB of physical memory, with locale
English_United States.1252, with WinPcap version 4.1.3 (packet.dll version
4.1.0.2980), based on libpcap version 1.0 branch 1_0_rel0b (20091008), with
GnuTLS 3.4.11, with Gcrypt 1.7.6, without AirPcap.

Built using Microsoft Visual C++ 14.0 build 24215

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.
--
The Entity Appearance record is currently displayed as an entry under the
Entity Orientation. It should be an entry under the Entity State PDU heading
immediately before Dead Reckoning Parameters record (see IEEE 1278.1-2012 7.2.2
Table 134). Entity Appearance record displays correctly in Wireshark version
2.0.4 (see detailed version info below)

Current Format:
Distributed Interactive Simulation
Header
Entity State PDU
Entity ID
Force ID: 1
Number of Articulation Parameters: 0
Entity Type, (1:2:225:4:5:4:0) 
Alternative Entity Type, (1:2:225:4:5:4:0) 
Entity Linear Velocity
Entity Location
Entity Orientation
Psi: -1.72788
Theta: 0.977385
Phi: 3.14159
--->Appearance: 0x
Dead Reckoning Other Parameters: 00
Dead Reckoning Parameters
Entity Marking
Capabilities: 0

Corrected Format:
Distributed Interactive Simulation
Header
Entity State PDU
Entity ID
Force ID: 1
Number of Articulation Parameters: 0
Entity Type, (1:2:225:4:5:4:0) 
Alternative Entity Type, (1:2:225:4:5:4:0) 
Entity Linear Velocity
Entity Location
Entity Orientation
--->Appearance: 0x
Dead Reckoning Parameters
Entity Marking
Capabilities: 0

Previous version information:
Version 2.0.4 (v2.0.4-0-gdd7746e from master-2.0)

Copyright 1998-2016 Gerald Combs  and contributors.
License GPLv2+: GNU GPL version 2 or later


Compiled (64-bit) with Qt 5.3.2, with WinPcap (4_1_3), with libz 1.2.8, with
GLib 2.42.0, with SMI 0.4.8, with c-ares 1.11.0, with Lua 5.2, with GnuTLS
3.2.15, with Gcrypt 1.6.2, with MIT Kerberos, with GeoIP, with QtMultimedia,
with AirPcap.

Running on 64-bit Windows 10, build 10586, with locale C, with WinPcap version
4.1.3 (packet.dll version 4.1.0.2980), based on libpcap version 1.0 branch
1_0_rel0b (20091008), with GnuTLS 3.2.15, with Gcrypt 1.6.2, without AirPcap.
Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz (with SSE4.2), with 16264MB of
physical memory.

Built using Microsoft Visual C++ 12.0 build 40629

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13889] WebSockets dissector is not called when the response body follows the HTTP headers in the same packet

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13889

Peter Wu  changed:

   What|Removed |Added

 Status|INCOMPLETE  |CONFIRMED
Summary|WebSocket parser doesn’t|WebSockets dissector is not
   |grok packets sent in the|called when the response
   |same TCP packet as the HTTP |body follows the HTTP
   |headers |headers in the same packet
   Hardware|x86 |All
 OS|macOS 10.12 |All

--- Comment #4 from Peter Wu  ---
Thanks for the reproducer, can reproduce the problem.

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 12563] Wireshark crashes when using "Export Packet Bytes"

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12563

Peter Wu  changed:

   What|Removed |Added

 CC||pe...@lekensteyn.nl
 Status|UNCONFIRMED |RESOLVED
 Resolution|--- |WORKSFORME

--- Comment #3 from Peter Wu  ---
No response, closing. Feel free to reopen if you have some more information.

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13916] tshark fails to dissect diameter traffic (Segmentation fault)

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13916

--- Comment #1 from Babak Farrokhi  ---
Created attachment 15713
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=15713=edit
core dump

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13916] New: tshark fails to dissect diameter traffic (Segmentation fault)

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13916

Bug ID: 13916
   Summary: tshark fails to dissect diameter traffic (Segmentation
fault)
   Product: Wireshark
   Version: Git
  Hardware: x86-64
OS: FreeBSD
Status: UNCONFIRMED
  Severity: Major
  Priority: Low
 Component: Dissection engine (libwireshark)
  Assignee: bugzilla-ad...@wireshark.org
  Reporter: ba...@farrokhi.net
  Target Milestone: ---

Created attachment 15712
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=15712=edit
lldb backtrace

Build Information:
TShark (Wireshark) 2.5.0 (Git Rev Unknown from unknown)

Copyright 1998-2017 Gerald Combs  and contributors.
License GPLv2+: GNU GPL version 2 or later

This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with libpcap, without POSIX capabilities, with GLib 2.50.2,
with zlib 1.2.11, without SMI, without c-ares, with Lua 5.2.4, without GnuTLS,
with Gcrypt 1.8.0, without Kerberos, without GeoIP, without nghttp2, without
LZ4, without Snappy, with libxml2 2.9.4.

Running on FreeBSD 11.0-STABLE, with Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz
(with SSE4.2), with locale C, with libpcap version 1.6.2, with Gcrypt 1.8.0,
with zlib 1.2.11.

Built using clang 4.2.1 Compatible FreeBSD Clang 4.0.0 (tags/RELEASE_400/final
297347).
--
latest git (615685e at this moment) as well as 2.4 (git 9be0fa5) fail to
dissect diameter traffic. 

% ./tshark -r diameter.pcap -2R "diameter.CC-Request-Type==1" -d
tcp.port==6001,diameter > /dev/null
Segmentation fault (core dumped)
% echo $?
139

However it works fine when the "read filter" is set to "diameter" only. e.g:

% ./tshark -r diameter.pcap -2R "diameter" -d tcp.port==6001,diameter >
/dev/null && echo success
success

lldb backtrace is attached.

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13881] Add (IETF) QUIC Dissector

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13881

--- Comment #1 from Alexis La Goutte  ---
Created attachment 15711
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=15711=edit
QUIC IETF (pre)draft05 from ngtcp2 (client and server)

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13914] DNS LOC parsing bug

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13914

--- Comment #4 from gavinspearhead+wsb...@gmail.com ---
Created attachment 15710
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=15710=edit
right loc contents

contains a correct loc RR

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13914] DNS LOC parsing bug

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13914

--- Comment #3 from gavinspearhead+wsb...@gmail.com ---
Created attachment 15709
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=15709=edit
wrong loc contents

Contains an invalid LOC rr

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

--- Comment #6 from Gerrit Code Review  ---
Change 22787 merged by Michael Mann:
VNC: Get Bytes before adding raw values to tree

https://code.wireshark.org/review/22787

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

Alexis La Goutte  changed:

   What|Removed |Added

 Resolution|--- |FIXED
 Status|IN_PROGRESS |RESOLVED
 CC||alexis.lagou...@gmail.com

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

--- Comment #3 from Gerrit Code Review  ---
Change 22786 had a related patch set uploaded by Michael Mann:
VNC: Get Bytes before adding raw values to tree

https://code.wireshark.org/review/22786

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

--- Comment #4 from Gerrit Code Review  ---
Change 22786 merged by Michael Mann:
VNC: Get Bytes before adding raw values to tree

https://code.wireshark.org/review/22786

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

--- Comment #5 from Gerrit Code Review  ---
Change 22787 had a related patch set uploaded by Michael Mann:
VNC: Get Bytes before adding raw values to tree

https://code.wireshark.org/review/22787

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

--- Comment #2 from Gerrit Code Review  ---
Change 22782 merged by Michael Mann:
VNC: Get Bytes before adding raw values to tree

https://code.wireshark.org/review/22782

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13914] DNS LOC parsing bug

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13914

Alexis La Goutte  changed:

   What|Removed |Added

 Status|UNCONFIRMED |CONFIRMED
 CC||alexis.lagou...@gmail.com
 Ever confirmed|0   |1

--- Comment #2 from Alexis La Goutte  ---
Yes, there is no check if it is a "wrong value"

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13504] Flow Graph Save As image truncated

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13504

--- Comment #1 from Jaap Keuter  ---
*** Bug 13913 has been marked as a duplicate of this bug. ***

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13913] Statistics>Flow Graph>Save as

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13913

Jaap Keuter  changed:

   What|Removed |Added

 Status|UNCONFIRMED |RESOLVED
 Resolution|--- |DUPLICATE

--- Comment #1 from Jaap Keuter  ---


*** This bug has been marked as a duplicate of bug 13504 ***

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13914] DNS LOC parsing bug

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13914

--- Comment #1 from Jaap Keuter  ---
Can you attach a sample capture file with correct and offending DNS frames?

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

Uli Heilmeier  changed:

   What|Removed |Added

 CC||u...@heilmeier.eu
 Ever confirmed|0   |1
 Status|UNCONFIRMED |IN_PROGRESS

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

Uli Heilmeier  changed:

   What|Removed |Added

 OS|Linux   |All
   Hardware|x86 |All

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 13910] VNC Protocol disector : Framebuffer Updates

2017-07-25 Thread bugzilla-daemon 
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13910

--- Comment #1 from Gerrit Code Review  ---
Change 22782 had a related patch set uploaded by Uli Heilmeier:
VNC: Get Bytes before adding raw values to tree

https://code.wireshark.org/review/22782

-- 
You are receiving this mail because:
You are watching all bug changes.___
Sent via:Wireshark-bugs mailing list 
Archives:https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
 mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe