[Bro-Dev] #829: terminate called after throwing an instance of 'std::logic_error'
Bro Tracker
bro at tracker.bro-ids.org
Wed Jun 13 08:33:41 PDT 2012
#829: terminate called after throwing an instance of 'std::logic_error'
-----------------------------+------------------------
Reporter: Tyler.Schoenke | Owner:
Type: Merge Request | Status: new
Priority: Normal | Milestone: Bro2.1
Component: Bro | Version: git/master
Resolution: | Keywords:
-----------------------------+------------------------
Comment (by jsiwek):
> I just tried those commands, and get the same result. It crashes
immediately when I run bro on the interface, and doesn't crash when run
against the pcap. Does tcpdump discard bad ICMP packets?
I don't think so. Just curious, what was Bro's `snaplen` setting? (and
to clarify, I meant that if it differed from the default 8192, to use that
value with tcpdump).
But maybe better is to just have Bro itself be dumping the packets as it
sees them, e.g.:
{{{
bro -w test.pcap -i eth0 record_all_packets=T
}}}
And then see if rerunning on that test.pcap after it crashes can reproduce
it.
--
Ticket URL: <http://tracker.bro-ids.org/bro/ticket/829#comment:11>
Bro Tracker <http://tracker.bro-ids.org/bro>
Bro Issue Tracker
More information about the bro-dev
mailing list