ANNOUNCEMENT: Live Wireshark University & Allegro Packets online APAC Wireshark Training Session
April 17th, 2024 | 14:30-16:00 SGT (UTC+8) | Online
Wireshark logo

Wireshark-bugs: [Wireshark-bugs] [Bug 5705] New: IEC61850 Sampled Values (sv): protocol payload

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Fri, 18 Feb 2011 06:12:41 -0800 (PST)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5705

           Summary: IEC61850 Sampled Values (sv): protocol payload marking
                    incorrect
           Product: Wireshark
           Version: 1.4.2
          Platform: x86
        OS/Version: Windows Vista
            Status: NEW
          Severity: Normal
          Priority: Low
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: kdjloca@xxxxxxxxx


Created an attachment (id=5954)
 --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=5954)
IEC61850 Sampled Values frame

Build Information:
Version 1.4.2 (SVN Rev 34959 from /trunk-1.4)

Copyright 1998-2010 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (32-bit) with GTK+ 2.16.6, with GLib 2.22.4, with WinPcap (version
unknown), with libz 1.2.3, without POSIX capabilities, without libpcre, with
SMI
0.4.8, with c-ares 1.7.1, with Lua 5.1, without Python, with GnuTLS 2.8.5, with
Gcrypt 1.4.5, with MIT Kerberos, with GeoIP, with PortAudio V19-devel (built
Nov
18 2010), with AirPcap.

Running on 32-bit Windows Vista Service Pack 2, build 6002, with WinPcap
version
4.0.2 (packet.dll version 4.0.0.1040), based on libpcap version 0.9.5, GnuTLS
2.8.5, Gcrypt 1.4.5, without AirPcap,  from the PortableApps U3 device in drive
C:.

Built using Microsoft Visual C++ 9.0 build 30729

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.

--
The protocol payload should be properly limited using the sv.length field. 

Currently most packets we capture are marked as invalid because our hardware,
also captures the Ethernet CRC32, which is incorrectly assumed to be part of
the protocol.

See the attached capture file for an example. The length field shows the
protocol payload to be 279 bytes, but when you select the IEC61850 Sampled
Values tree it highlights 283 bytes.

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
Wireshark logo footer

© Wireshark Foundation · Privacy Policy

Facebook·Mastodon·Twitter·YouTube