Wireshark-bugs: [Wireshark-bugs] [Bug 5746] Wireshark not able to decode the PPP frame in a sflo

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Fri, 11 Mar 2011 17:28:42 -0800 (PST)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5746

--- Comment #7 from Stephen Fisher <steve@xxxxxxxxxxxxxxxxxx> 2011-03-11 18:28:41 MST ---
The following patch fixes the problem for this packet, but we may need to do a
check to see if the first two bytes are 0xff03 or a protocol identifier before
deciding which PPP dissection to pass it on to:

Index: epan/dissectors/packet-sflow.c
===================================================================
--- epan/dissectors/packet-sflow.c      (revision 36176)
+++ epan/dissectors/packet-sflow.c      (working copy)
@@ -15,8 +15,7 @@
  *
  *
  * Based on Jeff Rizzo's <riz@xxxxxxxxxxxxxxxx> dissector for sFlow v2/4
- * in Wireshark 1.0.8 public release.
- *
+ * in Wireshark 1.0.8 public release. *
  * Wireshark - Network traffic analyzer
  * By Gerald Combs <gerald@xxxxxxxxxxxxx>
  * Copyright 1998 Gerald Combs
@@ -3404,7 +3403,7 @@
         fddi_handle = find_dissector("fddi");
         fr_handle = find_dissector("fr");
         x25_handle = find_dissector("x.25");
-        ppp_handle = find_dissector("ppp");
+        ppp_handle = find_dissector("ppp_hdlc");
 #if 0
         smds_handle = find_dissector("smds");
 #else

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.