https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5938
Summary: DHCP Discover parser for Option 60 Sub 0x0D is
incorrect
Product: Wireshark
Version: 1.4.6
Platform: Other
OS/Version: Windows 7
Status: NEW
Severity: Major
Priority: Low
Component: TShark
AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
ReportedBy: wireshark.20.tarragon@xxxxxxxxxxxxxxx
Build Information:
Version 1.4.6 (SVN Rev 36706 from /trunk-1.4)
Copyright 1998-2011 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled (32-bit) with GTK+ 2.16.6, with GLib 2.22.4, with WinPcap (version
unknown), with libz 1.2.3, without POSIX capabilities, without libpcre, with
SMI
0.4.8, with c-ares 1.7.1, with Lua 5.1, without Python, with GnuTLS 2.10.3,
with
Gcrypt 1.4.6, with MIT Kerberos, with GeoIP, with PortAudio V19-devel (built
Apr
18 2011), with AirPcap.
Running on 32-bit Windows 7, build 7600, with WinPcap version 4.1.2 (packet.dll
version 4.1.0.2001), based on libpcap version 1.0 branch 1_0_rel0b (20091008),
GnuTLS 2.10.3, Gcrypt 1.4.6, with AirPcap 4.1.1 build 1838.
Built using Microsoft Visual C++ 9.0 build 21022
Wireshark is Open Source Software released under the GNU General Public
License.
Check the man page and http://www.wireshark.org for more information.
--
Wireshark 1.4.6 and 1.2.8 incorrectly parse DHCP Discover Option 60 sub 0x0D
Values.
Here is a capture from a DOCSIS device
Option: (t=60,l=150) Vendor class identifier =
"docsis2.0:054401010102010203010104010105010106010107010f0801100901000a01010b01180c01010d0201000e0201000f01011004000000081e0110200110210101220101270101"
Option: (60) Vendor class identifier
Length: 150
Value: 646F63736973322E303A3035343430313031303130323031...
CM DC Length: 68
0x01: Concatenation Support = Yes (01)
0x02: DOCSIS Version = DOCSIS 2.0 (02)
0x03: Fragmentation Support = Yes (01)
0x04: PHS Support = Yes (01)
0x05: IGMP Support = Yes (01)
0x06: Privacy Support = BPI Plus Support (01)
0x07: Downstream SAID Support = 15
0x08: Upstream SID Support = 16
0x09: Optional Filtering Support = None (0x00)
0x0a: Transmit Equalizer Taps per Modulation Interval = 1
0x0b: Number of Transmit Equalizer Taps = 24
0x0c: DCC Support = Yes (01)
0x0d: IP Filters Support = 65744
The correct value for sub 0x0D is actually 256. (Raw data is 0d020100)
Wireshark 1.0.8 output correctly reports this value as 256.
--
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.