https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3285
Summary: malformed filter doesn't match malformed SIP packets
Product: Wireshark
Version: 1.0.6
Platform: PC
OS/Version: Windows XP
Status: NEW
Severity: Normal
Priority: Low
Component: Wireshark
AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
ReportedBy: ezragilbert@xxxxxxxxx
Build Information:
Version 1.0.6 (SVN Rev 27387)
Copyright 1998-2009 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled with GTK+ 2.12.8, with GLib 2.14.6, with WinPcap (version unknown),
with libz 1.2.3, without POSIX capabilities, with libpcre 7.0, with SMI 0.4.8,
with ADNS, with Lua 5.1, with GnuTLS 2.6.3, with Gcrypt 1.4.3, with MIT
Kerberos, with PortAudio V19-devel, with AirPcap.
Running on Windows XP Service Pack 2, build 2600, with WinPcap version 4.0.2
(packet.dll version 4.0.0.1040), based on libpcap version 0.9.5, without
AirPcap.
Built using Microsoft Visual C++ 6.0 build 8804
Wireshark is Open Source Software released under the GNU General Public
License.
Check the man page and http://www.wireshark.org for more information.
--
When the SIP dissector fails to parse a malformed SIP packet, wireshark
displays the following at the bottom of the packet details window:
[Malformed: SIP]
When I right click on that line and select Apply As Filter->Selected I get a
display filter of 'malformed'. However, the malformed SIP packets don't match
that filter and do not get displayed (note, malformed packets of other filters
do get displayed).
http://wiki.wireshark.org/Protocols/malformed says, "You can simply filter on
malformed to see all packets conaining malformed data"
Thanks for fixing this.
-Ezra
--
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
