diff options
| author | Luca Deri <deri@ntop.org> | 2021-07-14 12:51:42 +0200 |
|---|---|---|
| committer | Luca Deri <deri@ntop.org> | 2021-07-14 12:51:42 +0200 |
| commit | 3eba8cc5b572d6c24f5aa664e938b1d2b9ccf2d7 (patch) | |
| tree | 47038e6cccf5637f0052e152dfc5f5bfea73b84f /wireshark | |
| parent | b95bd0358fd43d9fdfdc5266e3c8923b91e1d4db (diff) | |
Temporary fix for avoiding wireshark errors
Diffstat (limited to 'wireshark')
| -rw-r--r-- | wireshark/ndpi.lua | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/wireshark/ndpi.lua b/wireshark/ndpi.lua index 52f7051b4..66b3c6138 100644 --- a/wireshark/ndpi.lua +++ b/wireshark/ndpi.lua @@ -68,7 +68,9 @@ flow_risks[28] = ProtoField.bool("ndpi.flow_risk.possibly_malicious_ja3", "Possi flow_risks[29] = ProtoField.bool("ndpi.flow_risk.possibly_malicious_ssl_certificate_sha1", "Possibly Malicious SSL Certificate SHA1 Fingerprint", num_bits_flow_risks, nil, bit(29), "nDPI Flow Risk: Possibly Malicious SSL Certificate SHA1 Fingerprint") flow_risks[30] = ProtoField.bool("ndpi.flow_risk.desktop_file_sharing_session", "Desktop/File Sharing Session", num_bits_flow_risks, nil, bit(30), "nDPI Flow Risk: Desktop/File Sharing Session") flow_risks[31] = ProtoField.bool("ndpi.flow_risk.uncommon_tls_alpn", "Uncommon TLS ALPN", num_bits_flow_risks, nil, bit(31), "nDPI Flow Risk: Uncommon TLS ALPN") -flow_risks[32] = ProtoField.bool("ndpi.flow_risk.cert_validity_too_long", "TLS certificate validity longer than 13 months", num_bits_flow_risks, nil, bit(32), "nDPI Flow Risk: TLS certificate validity longer than 13 months") +-- FIXME: Workaround for masks 32+ bits +-- flow_risks[32] = ProtoField.bool("ndpi.flow_risk.cert_validity_too_long", "TLS certificate validity longer than 13 months", num_bits_flow_risks, nil, bit(32), "nDPI Flow Risk: TLS certificate validity longer than 13 months") + for _,v in pairs(flow_risks) do ndpi_fds[#ndpi_fds + 1] = v end |