Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 10100] New: The PDML output for "Authoritative nameservers" record is wrong

Wireshark-bugs: [Wireshark-bugs] [Bug 10100] New: The PDML output for "Authoritative nameservers

Date: Mon, 12 May 2014 17:54:35 +0000

Bug ID	10100
Summary	The PDML output for "Authoritative nameservers" record is wrong
Classification	Unclassified
Product	Wireshark
Version	1.10.7
Hardware	x86
OS	Windows 7
Status	UNCONFIRMED
Severity	Major
Priority	Low
Component	TShark
Assignee	[email protected]
Reporter	[email protected]

Created attachment 12758 [details]
The pcap file used for this PR

Build Information:
Command: 
tshark -t a -n -r dns-walk.pcap} -R DNS -T pdml > ${expectedresultfile}

In the output file, the frame 30 has an "Authoritative nameservers" record. The
output is (which is at line 2510 of the attached file):

    <field name="" show="Authoritative nameservers" size="67" pos="109"
value="c03b000600010000038400370666656564313109766572696f2d77656203636f6d000a686f73746d6173746572c05677b10d0600002a30000007080036ee8000015180">
      <field name="" show="0-127.148.58.161.in-addr.arpa: type SOA, class IN,
mname feed11.verio-web.com" size="67" pos="109"
value="c03b000600010000038400370666656564313109766572696f2d77656203636f6d000a686f73746d6173746572c05677b10d0600002a30000007080036ee8000015180">
        <field name="dns.resp.name" showname="Name:
0-127.148.58.161.in-addr.arpa" size="2" pos="109"
show="0-127.148.58.161.in-addr.arpa" value="c03b"/>
        <field name="dns.resp.type" showname="Type: SOA (Start of zone of
authority)" size="2" pos="111" show="0x0006" value="0006"/>
        <field name="dns.resp.class" showname="Class: IN (0x0001)" size="2"
pos="113" show="0x0001" value="0001"/>
        <field name="dns.resp.ttl" showname="Time to live: 15 minutes" size="4"
pos="115" show="900" value="00000384"/>
        <field name="dns.resp.len" showname="Data length: 55" size="2"
pos="119" show="55" value="0037"/>
        <field name="" show="Primary name server: feed11.verio-web.com"
size="22" pos="121" value="0666656564313109766572696f2d77656203636f6d00"/>
        <field name="" show="Responsible authority&apos;s mailbox:
hostmaster.verio-web.com" size="13" pos="143"
value="0a686f73746d6173746572c056"/>
        <field name="" show="Serial number: 2008091910" size="4" pos="156"
value="77b10d06"/>
        <field name="" show="Refresh interval: 3 hours" size="4" pos="160"
value="00002a30"/>
        <field name="" show="Retry interval: 30 minutes" size="4" pos="164"
value="00000708"/>
        <field name="" show="Expiration limit: 41 days, 16 hours" size="4"
pos="168" value="0036ee80"/>
        <field name="" show="Minimum TTL: 1 day" size="4" pos="172"
value="00015180"/>
      </field>
    </field>

--
The field name should be "dns.resp.primaryname" instead of null. There are also
the same error for other fields below this field.

You are receiving this mail because:

You are watching all bug changes.

Follow-Ups:
- [Wireshark-bugs] [Bug 10100] The PDML output for "Authoritative nameservers" record is wrong
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10100] The PDML output for "Authoritative nameservers" record is wrong
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10100] The PDML output for "Authoritative nameservers" record is wrong
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10100] The PDML output for "Authoritative nameservers" record of DNS protocol is wrong
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10100] The PDML output for "Authoritative nameservers" record of DNS protocol is wrong
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 9541] [REGRESSION] tshark -z follow, tcp stats is broken
Next by Date: [Wireshark-bugs] [Bug 10100] The PDML output for "Authoritative nameservers" record is wrong
Previous by thread: [Wireshark-bugs] [Bug 9541] [REGRESSION] tshark -z follow, tcp stats is broken
Next by thread: [Wireshark-bugs] [Bug 10100] The PDML output for "Authoritative nameservers" record is wrong
Index(es):
- Date
- Thread