infinite loop on parsing gzipped packet

sipcapture / hep-wireshark

HOMER HEP Wireshark Dissector

http://sipcapture.org

GNU General Public License v2.0

27 stars 13 forks source link

infinite loop on parsing gzipped packet #5

Closed mritalian closed 7 years ago

mritalian commented 7 years ago

For chunk_type, 00000011, I suggest you handle it as a normal payload even if it shows jibberish, because right now it gets stuck in an infinite loop and hangs wireshark.

giavac commented 7 years ago

Hi @awiefhlwheajrliawuqfhlahfjsd - do you have a sample pcap we can use to try and reproduce the issue? Thanks.

mritalian commented 7 years ago

Sure here you go

hep3_compressed.pcap.pcapng.zip

mritalian commented 7 years ago

The fix is simply to process the data the same way you do for an uncompressed payload, This won't render anything meaningful in wireshark but it fixes the infinite loop.

giavac commented 7 years ago

Thanks @awiefhlwheajrliawuqfhlahfjsd