Comment # 4
on bug 7717
from Peter Wu
Okay, I found the cause. In the HTTP dissector, it tracks a conversation
between the proxy and the client (8008 <-> "client port"). For some reason,
http_payload_subdissector assumes a new conversation with the port specified in
the CONNECT host:443 request line (8008 --> 443 or "client port" <-- 443).
When the SSL dissector creates a conversation, it uses pinfo which uses the
mapping "client port" --> 8008 for the first time and 443 <-- 8008 for the
second time. That does not really match...
Now investigating if this mapping to 443 can be dropped somehow. (It is
presumably used for protocol detection, but something is incomplete)
You are receiving this mail because:
- You are watching all bug changes.