Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 12240] Interpretation of BGP NLRI for default route cause malformed packet

Wireshark-bugs: [Wireshark-bugs] [Bug 12240] Interpretation of BGP NLRI for default route cause

Date: Tue, 08 Mar 2016 15:19:14 +0000

Comment # 6 on bug 12240 from Garri

(In reply to Alexis La Goutte from comment #5)
> (In reply to Uli Heilmeier from comment #3)
> > After removing the lines
> > 
> > 1974         if( prefix_len == 0) {
> > 1975             return 1; /* prefix length is zero (i.e. matching all IP
> > prefixes) and remaining bytes within the NLRI is greater than or equal to 1
> > -      may be BGP add-path */
> > 1976         }
> > 
> > in epan/dissectors/packet-bgp.c the default routes are parsed without any
> > issue.
> 
> Thanks Uli for analyze 
> We need to found a better solution for support
> https://tools.ietf.org/html/draft-ietf-idr-add-paths

It seems like a false positive in the presented piece of code. The function
should return 1 only if there are remaining octets after prefix length field.
Maybe 'end' variable set to invalid value earlier in the code.

You are receiving this mail because:

You are watching all bug changes.

References:
- [Wireshark-bugs] [Bug 12240] New: Interpretation of BGP NLRI for default route cause malformed packet
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 12228] Qt GUI very slow when expanding packet details with a lot of items
Next by Date: [Wireshark-bugs] [Bug 12240] Interpretation of BGP NLRI for default route cause malformed packet
Previous by thread: [Wireshark-bugs] [Bug 12240] Interpretation of BGP NLRI for default route cause malformed packet
Next by thread: [Wireshark-bugs] [Bug 12240] Interpretation of BGP NLRI for default route cause malformed packet
Index(es):
- Date
- Thread