Wireshark-bugs: [Wireshark-bugs] [Bug 3560] New: USB Packets in pcap-ng Files Not Dissected Prop
Date Index · Thread Index · Other Months · All Mailing Lists
Date Prev · Date Next · Thread Prev · Thread Next
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Sun, 21 Jun 2009 05:55:22 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3560

           Summary: USB Packets in pcap-ng Files Not Dissected Properly
           Product: Wireshark
           Version: SVN
          Platform: Other
        OS/Version: All
            Status: NEW
          Severity: Minor
          Priority: Low
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: tyson.key@xxxxxxxxx


Created an attachment (id=3158)
 --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=3158)
usbmon0 pcap-ng capture file

Build Information:
wireshark 1.3.0-SVN-28708

Copyright 1998-2009 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled with GTK+ 2.14.7, with GLib 2.18.4, with libpcap 1.1-PRE-CVS, with
libz
1.2.3, with POSIX capabilities (Linux), with libpcre 7.8, without SMI, without
c-ares, without ADNS, without Lua, without Python, with GnuTLS 2.4.2, with
Gcrypt 1.4.4, without Kerberos, without GeoIP, without PortAudio, without
AirPcap.

Running on Linux 2.6.28-0.131.rc8.git4.fc11.i686, with libpcap version
1.1-PRE-CVS, GnuTLS 2.4.2, Gcrypt 1.4.4.

Built using gcc 4.3.2 20081105 (Red Hat 4.3.2-7).

--
I have noticed, that when capturing on a Linux USBmon interface using dumpcap,
and storing the result in a pcap-ng file, the packets contained within are not
dissected by Wireshark properly.

For example, no matter what type of URBs are captured, or the length of them or
other attributes, they are always dissected as follows:

No.     Time           Source                Destination           Protocol
Info
     59 0.000039000    0.0                   host                  USB     
URB_ISOCHRONOUS

Frame 59 (64 bytes on wire, 64 bytes captured)
USB URB
    URB id: 0x00000000000000ff
    URB type: Unknown 0 ('
    URB transfer type: URB_ISOCHRONOUS (0)
    Endpoint: 0x00
    Device: 0
    URB bus id: 6129
    Device setup request: not present ('F')
    Data: not present ('')
    URB status: Unknown (16777216)
    URB length [bytes]: 0

Attached are two capture files that demonstrate this problem.


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.