Wireshark-bugs: [Wireshark-bugs] [Bug 5778] New: Volume label field of "SMB/TRANS2-QUERY_FS_INFO
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5778
Summary: Volume label field of
"SMB/TRANS2-QUERY_FS_INFO/InfoVolume level" reply
packet is not displayed correctly due alignment issue
Product: Wireshark
Version: 1.2.11
Platform: x86
OS/Version: Ubuntu
Status: NEW
Severity: Normal
Priority: Low
Component: Wireshark
AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
ReportedBy: Volodymyr_Khomenko@xxxxxxxx
Created an attachment (id=6066)
--> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=6066)
Captured SMB traffic of smbtorture test between Linux and WinXP
Build Information:
wireshark 1.2.11
Copyright 1998-2010 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled with GTK+ 2.22.0, (32-bit) with GLib 2.26.0, with libpcap 1.1.1, with
libz 1.2.3.4, with POSIX capabilities (Linux), with libpcre 8.2, with SMI
0.4.8,
with c-ares 1.7.3, with Lua 5.1, with GnuTLS 2.8.6, with Gcrypt 1.4.5, with MIT
Kerberos, with GeoIP, with PortAudio V19-devel (built Aug 3 2010 05:16:18),
without AirPcap.
Running on Linux 2.6.35-24-generic-pae, with libpcap version 1.1.1, GnuTLS
2.8.6, Gcrypt 1.4.5.
Built using gcc 4.4.5.
--
Run RAW-QFSINFO smbtorture4 test (samba unit testing utility) on WinXP CIFS
server. + captured traffic between them.
When viewing reply for SMB/TRANS2-QUERY_FS_INFO request (InfoVolume level of
interest), 'label' field of QUERY_FS_INFO data is not parsed correctly because
alignment issue: it is shifted on one byte, so UNICODE string is not recognized
as expected.
In attached example volume label is 'sys_vol'.
--
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.