Wireshark-bugs: [Wireshark-bugs] [Bug 7866] New: '*' wildcard in the 'Src IP' or 'Dest IP' field
Date Index · Thread Index · Other Months · All Mailing Lists
Date Prev · Date Next · Thread Prev · Thread Next
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Tue, 16 Oct 2012 03:47:15 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7866

           Summary: '*' wildcard in the 'Src IP' or 'Dest IP' field of the
                    ESP SA does not work
           Product: Wireshark
           Version: 1.8.3
          Platform: x86
        OS/Version: Ubuntu
            Status: NEW
          Severity: Major
          Priority: Low
         Component: Dissection engine (libwireshark)
        AssignedTo: bugzilla-admin@xxxxxxxxxxxxx
        ReportedBy: msp@xxxxxx


Created attachment 9356
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=9356
Patch for packet-ipsec.c

Build Information:
wireshark 1.8.4 (SVN Rev 45560 from /trunk-1.8)

Copyright 1998-2012 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (32-bit) with GTK+ 2.20.1, with Cairo 1.8.10, with Pango 1.28.0, with
GLib 2.24.1, with libpcap, with libz 1.2.3.3, with POSIX capabilities (Linux),
without SMI, without c-ares, without ADNS, without Lua, without Python, with
GnuTLS 2.8.5, with Gcrypt 1.4.4, with MIT Kerberos, without GeoIP, without
PortAudio, with AirPcap.

Running on Linux 2.6.32-41-generic, with locale en_US.utf8, with libpcap
version
1.0.0, with libz 1.2.3.3, GnuTLS 2.8.5, Gcrypt 1.4.4, without AirPcap.

--
Entering '*' in the 'Src IP' or 'Dest IP' field of the ESP SA does not work as
expected.

The reason is that at the beginning of the function filter_address_match()
(packet-ipsec.c) the length of the filter is compared with the length of the ip
address, so it always returns false. 

I changed the condition such that it now matches the analogous condition in the
function filter_spi_match() (same file).

Attached you find a patch for packet-ipsec.c against trunk-1.8

--
Working Copy Root Path: /home/msp/src/wireshark
URL: https://anonsvn.wireshark.org/wireshark/trunk-1.8
Repository Root: https://anonsvn.wireshark.org/wireshark
Repository UUID: f5534014-38df-0310-8fa8-9805f1628bb7
Revision: 45576
Node Kind: directory
Schedule: normal
Last Changed Author: etxrab
Last Changed Rev: 45560
Last Changed Date: 2012-10-15 18:03:10 +0200 (Mon, 15 Oct 2012)

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.