https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7544
Summary: Multisegment PDUs are not reassembled properly
Product: Wireshark
Version: unspecified
Platform: x86
OS/Version: Gentoo
Status: NEW
Severity: Major
Priority: Low
Component: Dissection engine (libwireshark)
AssignedTo: bugzilla-admin@xxxxxxxxxxxxx
ReportedBy: ishkulov@xxxxxxxxx
Build Information:
Version 1.9.0 (SVN Rev 43352 from /trunk)
Copyright 1998-2012 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled (64-bit) with GTK+ 2.24.11, with Cairo 1.12.2, with Pango 1.30.1, with
GLib 2.32.4, with libpcap, with libz 1.2.7, with POSIX capabilities (Linux),
without SMI, without c-ares, without ADNS, with Lua 5.1, without Python, with
GnuTLS 2.12.20, with Gcrypt 1.5.0, without Kerberos, without GeoIP, with
PortAudio V19-devel (built May 14 2012 18:32:31), with AirPcap.
Running on Linux 3.4.4-gentoo, with locale ru_RU.UTF-8, with libpcap version
1.3.0, with libz 1.2.7, GnuTLS 2.12.20, Gcrypt 1.5.0, without AirPcap.
Built using gcc 4.6.3.
--
The problem happens when the end of PDU lays behind the end of current capture.
Starting from third packet after last pdu Wireshark dissects all packets
without attemp to desegment them.
Looks like problem is in packet-tcp.c file in desegment_tcp function.
msp->nextpdu upadated each time but that should be done for the first time
only.
Simple patch fixes that.
--
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
