Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.
Wireshark logo

Wireshark-bugs: [Wireshark-bugs] [Bug 5938] New: DHCP Discover parser for Option 60 Sub 0x0D is

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Fri, 20 May 2011 07:12:26 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5938

           Summary: DHCP Discover parser for Option 60 Sub 0x0D is
                    incorrect
           Product: Wireshark
           Version: 1.4.6
          Platform: Other
        OS/Version: Windows 7
            Status: NEW
          Severity: Major
          Priority: Low
         Component: TShark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: wireshark.20.tarragon@xxxxxxxxxxxxxxx


Build Information:
Version 1.4.6 (SVN Rev 36706 from /trunk-1.4)

Copyright 1998-2011 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (32-bit) with GTK+ 2.16.6, with GLib 2.22.4, with WinPcap (version
unknown), with libz 1.2.3, without POSIX capabilities, without libpcre, with
SMI
0.4.8, with c-ares 1.7.1, with Lua 5.1, without Python, with GnuTLS 2.10.3,
with
Gcrypt 1.4.6, with MIT Kerberos, with GeoIP, with PortAudio V19-devel (built
Apr
18 2011), with AirPcap.

Running on 32-bit Windows 7, build 7600, with WinPcap version 4.1.2 (packet.dll
version 4.1.0.2001), based on libpcap version 1.0 branch 1_0_rel0b (20091008),
GnuTLS 2.10.3, Gcrypt 1.4.6, with AirPcap 4.1.1 build 1838.

Built using Microsoft Visual C++ 9.0 build 21022

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.
--
Wireshark 1.4.6 and 1.2.8  incorrectly parse DHCP Discover Option 60 sub 0x0D
Values. 

Here is a capture from a DOCSIS device 

Option: (t=60,l=150) Vendor class identifier =
"docsis2.0:054401010102010203010104010105010106010107010f0801100901000a01010b01180c01010d0201000e0201000f01011004000000081e0110200110210101220101270101"
        Option: (60) Vendor class identifier
        Length: 150
        Value: 646F63736973322E303A3035343430313031303130323031...
        CM DC Length: 68
        0x01: Concatenation Support = Yes (01)
        0x02: DOCSIS Version = DOCSIS 2.0 (02)
        0x03: Fragmentation Support = Yes (01)
        0x04: PHS Support = Yes (01)
        0x05: IGMP Support = Yes (01)
        0x06: Privacy Support = BPI Plus Support (01)
        0x07: Downstream SAID Support = 15
        0x08: Upstream SID Support = 16
        0x09: Optional Filtering Support = None (0x00)
        0x0a: Transmit Equalizer Taps per Modulation Interval = 1
        0x0b: Number of Transmit Equalizer Taps = 24
        0x0c: DCC Support = Yes (01)
        0x0d: IP Filters Support = 65744

The correct value for sub 0x0D is actually 256. (Raw data is 0d020100)

Wireshark 1.0.8 output correctly reports this value as 256.

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
Wireshark logo footer

© Wireshark Foundation · Privacy Policy

Facebook·Mastodon·Twitter·YouTube