Wireshark-bugs: [Wireshark-bugs] [Bug 5301] New: Add expert info when ASN.1 PER contrained integ
Date: Sat, 16 Oct 2010 06:03:15 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5301 Summary: Add expert info when ASN.1 PER contrained integer does not match range Product: Wireshark Version: SVN Platform: Other OS/Version: Windows XP Status: NEW Severity: Enhancement Priority: Low Component: Wireshark AssignedTo: wireshark-bugs@xxxxxxxxxxxxx ReportedBy: pascal.quantin@xxxxxxxxx Pascal Quantin <pascal.quantin@xxxxxxxxx> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #5314| |review_for_checkin? Flag| | Created an attachment (id=5314) --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=5314) Add expert info in case of bounds error Build Information: Version 1.5.0 (SVN Rev 34529 from /trunk) Copyright 1998-2010 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. Compiled with GTK+ 2.16.6, (32-bit) with GLib 2.24.2, with WinPcap (version unknown), with libz 1.2.3, without POSIX capabilities, without libpcre, with SMI 0.4.8, with c-ares 1.7.1, with Lua 5.1, without Python, with GnuTLS 2.8.5, with Gcrypt 1.4.5, with MIT Kerberos, with GeoIP, with PortAudio V19-devel (built Oct 14 2010), with AirPcap. Running on Windows XP Service Pack 3, build 2600, with WinPcap version 4.1.2 (packet.dll version 4.1.0.2001), based on libpcap version 1.0 branch 1_0_rel0b (20091008), GnuTLS 2.8.5, Gcrypt 1.4.5, without AirPcap. Built using Microsoft Visual C++ 9.0 build 30729 Wireshark is Open Source Software released under the GNU General Public License. Check the man page and http://www.wireshark.org for more information. -- The attached patch displays an expert info error if the integer decoded by the ASN.1 PER decoder does not match the range specified. Here is an example where threshold-RSRP parameter is not in the [0..97] range: DL-DCCH-Message message: c1 (0) c1: rrcConnectionReconfiguration (4) rrcConnectionReconfiguration rrc-TransactionIdentifier: 1 criticalExtensions: c1 (0) c1: rrcConnectionReconfiguration-r8 (0) rrcConnectionReconfiguration-r8 measConfig measObjectToAddModList: 1 item Item 0 MeasObjectToAddMod measObjectId: 1 measObject: measObjectEUTRA (0) measObjectEUTRA carrierFreq: 39150 allowedMeasBandwidth: mbw100 (5) .... 1... presenceAntennaPort1: True neighCellConfig: 00 [bit length 2, 6 LSB pad bits, 00.. .... decimal value 0] reportConfigToAddModList: 4 items Item 0 ReportConfigToAddMod reportConfigId: 1 reportConfig: reportConfigEUTRA (0) reportConfigEUTRA triggerType: event (0) event eventId: eventA3 (2) eventA3 a3-Offset: 1 .... ..0. reportOnLeave: False hysteresis: 0 timeToTrigger: ms1280 (13) triggerQuantity: rsrp (0) reportQuantity: sameAsTriggerQuantity (0) maxReportCells: 8 reportInterval: ms240 (1) reportAmount: infinity (7) Item 1 ReportConfigToAddMod reportConfigId: 2 reportConfig: reportConfigEUTRA (0) reportConfigEUTRA triggerType: event (0) event eventId: eventA3 (2) eventA3 a3-Offset: 1 .... ..0. reportOnLeave: False hysteresis: 0 timeToTrigger: ms1280 (13) triggerQuantity: rsrp (0) reportQuantity: sameAsTriggerQuantity (0) maxReportCells: 8 reportInterval: ms240 (1) reportAmount: infinity (7) Item 2 ReportConfigToAddMod reportConfigId: 3 reportConfig: reportConfigEUTRA (0) reportConfigEUTRA triggerType: event (0) event eventId: eventA2 (1) eventA2 a2-Threshold: threshold-RSRP (0) threshold-RSRP: 98 [Expert Info (Error/Malformed): Constrained integer value 98 is out of [0..97] range] [Message: Constrained integer value 98 is out of [0..97] range] [Severity level: Error] [Group: Malformed] hysteresis: 0 timeToTrigger: ms0 (0) triggerQuantity: rsrp (0) reportQuantity: sameAsTriggerQuantity (0) maxReportCells: 8 reportInterval: min60 (12) reportAmount: r1 (0) Item 3 ReportConfigToAddMod reportConfigId: 4 reportConfig: reportConfigEUTRA (0) reportConfigEUTRA triggerType: event (0) event eventId: eventA1 (0) eventA1 a1-Threshold: threshold-RSRP (0) threshold-RSRP: 98 [Expert Info (Error/Malformed): Constrained integer value 98 is out of [0..97] range] [Message: Constrained integer value 98 is out of [0..97] range] [Severity level: Error] [Group: Malformed] hysteresis: 0 timeToTrigger: ms0 (0) triggerQuantity: rsrp (0) reportQuantity: sameAsTriggerQuantity (0) maxReportCells: 8 reportInterval: min60 (12) reportAmount: r1 (0) measIdToAddModList: 2 items Item 0 MeasIdToAddMod measId: 1 measObjectId: 1 reportConfigId: 1 Item 1 MeasIdToAddMod measId: 7 measObjectId: 1 reportConfigId: 3 quantityConfig quantityConfigEUTRA measGapConfig: release (0) release: NULL s-Measure: 1 speedStatePars: setup (1) setup mobilityStateParameters t-Evaluation: s180 (3) t-HystNormal: s180 (3) n-CellChangeMedium: 8 n-CellChangeHigh: 8 timeToTrigger-SF sf-Medium: oDot5 (1) sf-High: oDot5 (1) dedicatedInfoNASList: 1 item Item 0 DedicatedInfoNAS: 07420105062085f817007b00575201c10507000000002204... Non-Access-Stratum (NAS)PDU 0000 .... = Security header type: Plain NAS message, not security protected (0) .... 0111 = Protocol discriminator: EPS mobility management messages (7) NAS EPS Mobility Management Message Type: Attach accept (0x42) 0000 .... = Spare half octet: 0 .... 0... = Spare bit(s): 0x00 .... .001 = Attach result: EPS only (1) GPRS Timer: 10 sec 000. .... = Unit: value is incremented in multiples of 2 seconds (0) ...0 0101 = Timer value: 5 Tracking area identity list - TAI list Length: 6 0... .... = Spare bit(s): 0x00 .01. .... = Type of list: list of TACs belonging to one PLMN, with consecutive TAC values (1) ...0 0000 = Number of elements: 0 [+1 = 1 element(s)] Mobile Country Code (MCC): Unknown (588) Mobile Network Code (MNC): Unknown (71) Tracking area code(TAC): 0x007b ESM message container Length: 87 ESM message container contents: 5201c105070000000022046767736e056e6f6b696103636f... 0101 .... = EPS bearer identity: 0x05 .... 0010 = Protocol discriminator: EPS session management messages (2) Procedure transaction identity: 1 NAS EPS session management messages: Activate default EPS bearer context request (0xc1) EPS quality of service Length: 5 Quality of Service Class Identifier (QCI): QCI 7 (7) UE->NW Subscribed maximum bit rate for uplink/ NW->UE Reserved UE->NW Subscribed maximum bit rate for downlink/ NW->UE Reserved Guaranteed bit rate for uplink : 0 kbps Guaranteed bit rate for downlink : 0 kbps Access Point Name Length: 34 APN: ggsn.nokia.com.mnc071.mcc588.gprs PDN address Length: 5 0000 0... = Spare bit(s): 0x00 PDN type: IPv4 (1) PDN IPv4: 10.106.208.114 (10.106.208.114) APN aggregate maximum bit rate Element ID: 94 Length: 6 APN-AMBR for downlink : 8640 kbps APN-AMBR for uplink : 8640 kbps APN-AMBR for downlink (extended) : 64 Mbps APN-AMBR for uplink (extended) : 48 Mbps APN-AMBR for downlink (extended) : 39936 Mbs APN-AMBR for uplink (extended) : 29952 Mbs Protocol Configuration Options Element ID: 39 Length: 27 1... .... = Ext: 0x01 Configuration Protocol: PPP (0) Protocol: IP Control Protocol (32801) Length: 0x0a (10) PPP IP Control Protocol Code: Configuration Ack (0x02) Identifier: 0x00 Length: 10 Options: (6 bytes) Primary DNS server IP address: 172.28.30.48 Protocol: IP Control Protocol (32801) Length: 0x0a (10) PPP IP Control Protocol Code: Configuration Ack (0x02) Identifier: 0x00 Length: 10 Options: (6 bytes) Secondary DNS server IP address: 172.28.30.49 EPS mobile identity - GUTI Element ID: 80 Length: 11 .... 0... = odd/even indic: 0 .... .110 = Type of identity: GUTI (6) Mobile Country Code (MCC): Unknown (588) Mobile Network Code (MNC): Unknown (71) MME Group ID: 100 MME Code: 255 M-TMSI: 0x00000002 GPRS Timer - T3402 value Element ID: 23 GPRS Timer: 12 min 001. .... = Unit: value is incremented in multiples of 1 minute (1) ...0 1100 = Timer value: 12 GPRS Timer - T3423 value Element ID: 89 GPRS Timer: 54 min 010. .... = Unit: value is incremented in multiples of decihours (2) ...0 1001 = Timer value: 9 radioResourceConfigDedicated srb-ToAddModList: 1 item Item 0 SRB-ToAddMod srb-Identity: 2 rlc-Config: defaultValue (1) defaultValue: NULL logicalChannelConfig: defaultValue (1) defaultValue: NULL drb-ToAddModList: 1 item Item 0 DRB-ToAddMod eps-BearerIdentity: 5 drb-Identity: 4 pdcp-Config discardTimer: ms1500 (6) rlc-AM .... ...1 statusReportRequired: True headerCompression: notUsed (0) notUsed: NULL rlc-Config: am (0) am ul-AM-RLC t-PollRetransmit: ms250 (49) pollPDU: p16 (2) pollByte: kB500 (7) maxRetxThreshold: t16 (6) dl-AM-RLC t-Reordering: ms50 (10) t-StatusProhibit: ms50 (10) logicalChannelIdentity: 4 logicalChannelConfig ul-SpecificParameters priority: 16 prioritisedBitRate: kBps8 (1) bucketSizeDuration: ms50 (0) logicalChannelGroup: 1 mac-MainConfig: explicitValue (0) explicitValue ul-SCH-Config periodicBSR-Timer: sf40 (5) retxBSR-Timer: sf2560 (3) 0... .... ttiBundling: False timeAlignmentTimerDedicated: sf2560 (4) phr-Config: setup (1) setup periodicPHR-Timer: sf200 (4) prohibitPHR-Timer: sf100 (4) dl-PathlossChange: dB6 (2) physicalConfigDedicated cqi-ReportConfig cqi-ReportModeAperiodic: rm30 (3) nomPDSCH-RS-EPRE-Offset: 0 cqi-ReportPeriodic: setup (1) setup cqi-PUCCH-ResourceIndex: 6 cqi-pmi-ConfigIndex: 13 cqi-FormatIndicatorPeriodic: widebandCQI (0) widebandCQI: NULL 1... .... simultaneousAckNackAndCQI: True antennaInfo: explicitValue (0) explicitValue transmissionMode: tm2 (1) ue-TransmitAntennaSelection: release (0) release: NULL -- Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.
- Follow-Ups:
- [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- From: bugzilla-daemon
- [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- Prev by Date: [Wireshark-bugs] [Bug 3454] Feature Request: Add protocol sub-field to the bootp dissector (Option 12 Hostname)
- Next by Date: [Wireshark-bugs] [Bug 5302] New: Issues generating dissectors with tools/pidl ?
- Previous by thread: [Wireshark-bugs] [Bug 3454] Feature Request: Add protocol sub-field to the bootp dissector (Option 12 Hostname)
- Next by thread: [Wireshark-bugs] [Bug 5301] Add expert info when ASN.1 PER constrained integer does not match range
- Index(es):