Public bug reported:
On a fresh xubuntu install of 18.04.1, the desktop edition, I installed
wireshark and libvirt-wireshark, with all needed dependencies, from apt-
get. I then tried to look at some libvirt-rpc traffic as a pcap in
wireshark; it came up as regular TCP.
Checking the list of loaded plugins, I found that the libvirt
plugin(libvirt.so) wasn't loaded. Further investigation proved that the plugin
installed to the wireshark 2.4.5 plugin directory and not 2.6(the version
currently on the repos).
Bug #1: probably should update the install directory to match the current
wireshark version on the repos.
I then tried just symlinking the plugin to the correct directory so that
wireshark 2.6 would load it; that didn't work. Copying the file from the 2.4.5
directory to 2.6 also didn't work. Eventually I ended up apt-get removing the
2.6 install of wireshark and the dissector, building and installing 2.4.5 from
source, then reinstalling the wireshark dissector with apt-get. This got the
plugin to load properly, and I was able to confirmed that it loaded in the
about->plugins menu in wireshark. But even then, it failed to dissect libvirt
rpc traffic, and came in as regular TCP. I made sure all protocols were
enabled, and with the plugin loaded, I didn't even see anything libvirt-rpc
related in the supported protocols list.
The build of wireshark was otherwise able to dissect pcaps with other kinds of
traffic, so I doubt it was anything to do with my wireshark build.
Bug #2: The dissector itself loads in 2.4.5, but is seemingly broken.
I expected it to be able to dissect libvirt-rpc traffic, and it was not only
unable to, but didn't even seem to load properly, as there was no evidence it
added any capacity to dissect libvirt-rpc traffic in any of the supported
protocol menus.
I should note that I am unable to provide the libvirt-rpc traffic
captures I am using to test this for, well, reasons. Sorry about that
The pkg details for libvirt-wireshark:
Installed: 4.0.0-1ubuntu8.5
Candidate: 4.0.0-1ubuntu8.5
Version table:
*** 4.0.0-1ubuntu8.5 500
500 http://us.archive.ubuntu.com/ubuntu bionic-updates/universe amd64
Packages
100 /var/lib/dpkg/status
4.0.0-1ubuntu8.2 500
500 http://us.archive.ubuntu.com/ubuntu bionic-security/universe amd64
Packages
4.0.0-1ubuntu8 500
** Affects: libvirt (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1809976
Title:
Libvirt wireshark dissector fails to dissect anything
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1809976/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
