Wireshark · Wireshark-dev: Re: [Wireshark-dev] Backporting fuzztest fixes

Wireshark-dev: Re: [Wireshark-dev] Backporting fuzztest fixes

From: Jaap Keuter <jaap.keuter@xxxxxxxxx>

Date: Wed, 12 Aug 2009 22:14:08 +0200

Gerald Combs wrote:

Jaap Keuter wrote:

Hi list,

There have been a renewed influx of fuzztest bugs, due to improved
reporting.
Now a lot have/are being fixed, but little has appeared on the 1.2.2

roadmap for backporting.Shouldn't this be done?


I've added a couple of obvious ones to the list. The others are the
result of trying to add integer items with the wrong length, e.g. a
20-byte FT_UINT32. As pointed out in bug 3884, we might want to have
proto.c handle this more gracefully instead of adding length checks to a
lot of dissectors.


Great, thanks.

On the way forward, there are two options for the API. Either the length isincorrectly programmed (a genuine bug in the dissector), or an invalid length isderived from the TVB (a protocol error). The first one should be a true assert,the second an expert item and a way to resync (if possible).

Sounds like we really need these generic TLV routines.

Thanx,
Jaap

References:
- [Wireshark-dev] Backporting fuzztest fixes
  - From: Jaap Keuter
- Re: [Wireshark-dev] Backporting fuzztest fixes
  - From: Gerald Combs

Prev by Date: Re: [Wireshark-dev] Register display filter / EIGRP dissector update
Next by Date: [Wireshark-dev] Windows build failing on register.c
Previous by thread: Re: [Wireshark-dev] Backporting fuzztest fixes
Next by thread: [Wireshark-dev] Add the next Tvb packet to current tvb before dissecting
Index(es):
- Date
- Thread