Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-bugs: [Wireshark-bugs] [Bug 3153] New: Add code to call packet-ccsds from packet-802.3

Date: Sun, 21 Dec 2008 20:42:06 -0800 (PST)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3153

           Summary: Add code to call packet-ccsds from packet-802.3
           Product: Wireshark
           Version: 1.1.x (Experimental)
          Platform: Macintosh
        OS/Version: Mac OS X 10.5
            Status: NEW
          Severity: Normal
          Priority: Medium
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: parrisimo@xxxxxxxxx


Build Information:
Version 1.1.2 (SVN Rev 27055)

Copyright 1998-2008 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled with GTK+ 2.15.0, with GLib 2.19.4, with libpcap 0.9.5, with libz
1.2.3, without POSIX capabilities, without libpcre, without SMI, without
c-ares,
without ADNS, without Lua, without GnuTLS, without Gcrypt, with MIT Kerberos,
without GeoIP, without PortAudio, without AirPcap.
NOTE: this build doesn't support the "matches" operator for Wireshark filter
syntax.

Running on Darwin 9.6.0 (MacOS 10.5.6), with libpcap version 0.9.5.

Built using gcc 4.0.1 (Apple Inc. build 5490).

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.
--
CCSDS packets may reside within an 802.3 packet.  This patch provides a way for
the CCSDS dissector to be called from the 802.3 dissector.  This patch
distinguishes between 802.2 (LLC) packets from CCSDS packets by grabbing the
packet length from the CCSDS header and comparing it to the packet length of
the 802.3 payload.  If the sizes match, then the payload is assumed to be CCSDS
instead of 802.2.

Since the CCSDS message length location is within the 802.2 data field, there
is a chance that an 802.2 packet could contain data that coincidentally equals
the length of the 802.2 packet.  This is the risk of using this detection
method.

Code successfully completes 1000 passes of fuzz testing using fuzz-test.sh


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.