Capture filters not working when using SSH capture and dumpcap
Summary
When doing SSH Remote Capture does not recognize the Remote Capture filter if dumpcap is selected.
- Version 4.0.0 (Git v4.0.0 packaged as 4.0.0-1)
- Arch Linux
- uname -a: Linux hostname 5.19.13-arch1-1 #1 (closed) SMP PREEMPT_DYNAMIC Tue, 04 Oct 2022 14:36:58 +0000 x86_64 GNU/Linux
Steps to reproduce
On SSH remote capture:sshdump screen (Capture Tab)
- Remote interface: eth0
- Remote capture command selection: dumpcap
- Remote Capture command:
- Use sudo on remote machine: not selected
- No promiscous mode: not selected
- Remote capture filter: not port 33
- Packets to capture: 0
What is the current bug behavior?
Still see port 33 during live capture.
What is the expected correct behavior?
Should not see any packets with port 33. Behaves as expected on version 3.6.8 (using tcpdump)
Sample capture file
(If possible attach a sample capture file showing this issue)
Relevant logs and/or screenshots
(sshdump:6704) 08:03:56.192543 [sshdump DEBUG] /usr/src/debug/wireshark-4.0.0/extcap/sshdump.c:209 -- run_ssh_command(): Running: dumpcap -i 'eth0' -w - 'not port 33'
____not sure if because -f is not passed to the command____
Build information
TShark (Wireshark) 4.0.0 (Git v4.0.0 packaged as 4.0.0-1).
Copyright 1998-2022 Gerald Combs <gerald@wireshark.org> and contributors.
Licensed under the terms of the GNU General Public License (version 2 or later).
This is free software; see the file named COPYING in the distribution. There is
NO WARRANTY; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled (64-bit) using GCC 12.2.0, with GLib 2.74.0, with PCRE2, with zlib
1.2.12, with libpcap, with POSIX capabilities (Linux), with libnl 3, with Lua
5.2.4, with GnuTLS 3.7.8 and PKCS #11 support, with Gcrypt 1.10.1-unknown, with
Kerberos (MIT), with MaxMind, with nghttp2 1.50.0, with brotli, with LZ4, with
Zstandard, with Snappy, with libxml2 2.10.2, without libsmi, with binary
plugins.
Running on Linux 5.19.13-arch1-1, with Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
(with SSE4.2), with 15852 MB of physical memory, with GLib 2.74.0, with PCRE2
10.40 2022-04-14, with zlib 1.2.12, with libpcap 1.10.1 (with TPACKET_V3), with
c-ares 1.18.1, with GnuTLS 3.7.8, with Gcrypt 1.10.1-unknown, with nghttp2
1.50.0, with brotli 1.0.9, with LZ4 1.9.4, with Zstandard 1.5.2, with
LC_TYPE=en_CA.UTF-8, binary plugins supported.
Edited by Al Audet