Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-bugs: [Wireshark-bugs] [Bug 5417] New: Patch: Fix for corrupt DOCSIS Management Packet

Date: Wed, 17 Nov 2010 09:17:19 -0800 (PST)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5417

           Summary: Patch: Fix for corrupt DOCSIS Management Packets with
                    CASA CMTS Mirroring
           Product: Wireshark
           Version: SVN
          Platform: Other
        OS/Version: All
            Status: NEW
          Severity: Major
          Priority: Low
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: g.reismueller@xxxxxx
                CC: g.reismueller@xxxxxx


Guido Reismueller <g.reismueller@xxxxxx> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
   Attachment #5484|                            |review_for_checkin?
               Flag|                            |

Created an attachment (id=5484)
 --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=5484)
Fix for corrupt DOCSIS MMM packets with CASA CMTS Mirroring

Build Information:
wireshark 1.5.0 (SVN Rev 34777 from /trunk)

Copyright 1998-2010 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (32-bit) with GTK+ 2.20.1, with GLib 2.24.1, with libpcap 1.0.0, with
libz 1.2.3.3, without POSIX capabilities, without libpcre, without SMI, without
c-ares, without ADNS, without Lua, without Python, without GnuTLS, without
Gcrypt, without Kerberos, without GeoIP, without PortAudio, without AirPcap.

Running on Linux 2.6.32-25-generic, with libpcap version 1.0.0, with libz
1.2.3.3.

Built using gcc 4.4.3.

--
With CASA CMTS you can mirror DOCSIS traffic from and to a certain MAC address.
There are some Management Packets in the capture, that do not have the
necessary flags fctype and fcparam set.
With this patch we try to dissect DOCSIS packets as management packets and if
this fails, we dissect them as normal ethernet packets.

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.