[prev in list] [next in list] [prev in thread] [next in thread]
List: wireshark-users
Subject: Re: [Wireshark-users] R13 S1AP message "Reroute NAS Request" is not decoding completely using 2.3.0
From: Pascal Quantin <pascal.quantin () gmail ! com>
Date: 2017-03-17 17:16:11
Message-ID: CAGka-83XJCmdbn--W9fmo7MDCJVakjzV3jqTXRaC2_Eu8qnatw () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/related)]
[Attachment #4 (multipart/alternative)]
2017-03-17 17:48 GMT+01:00 Pascal Quantin <pascal.quantin@gmail.com>:
> Hi Sabyasachi,
>
> 2017-03-17 17:36 GMT+01:00 Sabyasachi Samal <sabyasachisamal@gmail.com>:
>
>> Hi Anders,
>> Thanks for the response. I am using the message structure of TS 36.413
>> v13.3.0 and wireshark development version Version 2.3.0-2658-gfe285c6
>> (v2.3.0rc0-2658-gfe285c6). I do not know the process of filling a ticket
>> for wireshark. Attaching the trace here so that you guys can help.[image:
>> Inline image 1]
>>
>>
> Wireshark tries to decode the S1-Message element as a UE Initial Message
> PDU, and not as a S1AP message PDU. It means that the decoding is shifted
> by a few bits, leading to a wrong decoding. I'm gonna fix this.
>
Fix under review here: https://code.wireshark.org/review/#/c/20595/
Regards,
Pascal.
>
>> On Thu, Mar 16, 2017 at 2:49 PM, Anders Broman <
>> anders.broman@ericsson.com> wrote:
>>
>>> Hi,
>>>
>>> The S1AP dissector in trunk is based on TS 36.413 V13.5.0 (2016-12) so
>>> I guess it should decode the message.
>>>
>>> The best is to raise a bug attaching a trace with the RerouteNASRequest
>>> message and describe what is not dissected correctly.
>>>
>>> Regards
>>>
>>> Anders
>>>
>>>
>>>
>>> *From:* wireshark-users-bounces@wireshark.org [mailto:
>>> wireshark-users-bounces@wireshark.org] *On Behalf Of *Sabyasachi Samal
>>> *Sent:* den 16 mars 2017 10:11
>>> *To:* Community support list for Wireshark <
>>> wireshark-users@wireshark.org>
>>> *Subject:* [Wireshark-users] R13 S1AP message "Reroute NAS Request" is
>>> not decoding completely using 2.3.0
>>>
>>>
>>>
>>> Hi,
>>>
>>> R13 baseline S1AP message "RerouteNASRequest" is not decoding completely
>>> using 2.3.0. Can anyone suggest how to proceed on this or is there any plan
>>> supporting this.
>>>
>>>
>>>
>>> --
>>>
>>> Regards,
>>> Sabyasachi
>>>
>>> ____________________________________________________________
>>> _______________
>>> Sent via: Wireshark-users mailing list <wireshark-users@wireshark.org
>>> >
>>> Archives: https://www.wireshark.org/lists/wireshark-users
>>> Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-users
>>> mailto:wireshark-users-request@wireshark.org?subject=unsubs
>>> cribe
>>>
>>
>>
>>
>> --
>> Regards,
>> Sabyasachi
>>
>> ____________________________________________________________
>> _______________
>> Sent via: Wireshark-users mailing list <wireshark-users@wireshark.org>
>> Archives: https://www.wireshark.org/lists/wireshark-users
>> Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-users
>> mailto:wireshark-users-request@wireshark.org?subject=unsubs
>> cribe
>>
>
>
[Attachment #7 (text/html)]
<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">2017-03-17 \
17:48 GMT+01:00 Pascal Quantin <span dir="ltr"><<a \
href="mailto:pascal.quantin@gmail.com" \
target="_blank">pascal.quantin@gmail.com</a>></span>:<br><blockquote \
class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><div dir="ltr">Hi Sabyasachi,<br><div><div \
class="gmail_extra"><br><div class="gmail_quote"><span class="gmail-">2017-03-17 \
17:36 GMT+01:00 Sabyasachi Samal <span dir="ltr"><<a \
href="mailto:sabyasachisamal@gmail.com" \
target="_blank">sabyasachisamal@gmail.com</a>></span>:<br><blockquote \
class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><div dir="ltr">Hi Anders,<div>Thanks for the \
response. I am using the message structure of TS 36.413 v13.3.0 and wireshark \
development version Version 2.3.0-2658-gfe285c6 (v2.3.0rc0-2658-gfe285c6). I do not \
know the process of filling a ticket for wireshark. Attaching the trace here so that \
you guys can help.<img src="cid:ii_15add1fa9a63dbd3" alt="Inline image 1" width="472" \
height="260"></div></div><div \
class="gmail_extra"><br></div></blockquote></span><div><br>Wireshark tries to decode \
the S1-Message element as a UE Initial Message PDU, and not as a S1AP message PDU. It \
means that the decoding is shifted by a few bits, leading to a wrong decoding. \
I'm gonna fix this.<br></div></div></div></div></div></blockquote><div><br></div><div>Fix \
under review here: <a \
href="https://code.wireshark.org/review/#/c/20595/">https://code.wireshark.org/review/ \
#/c/20595/</a><br><br></div><div>Regards,<br></div><div>Pascal.<br><br></div><blockquote \
class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div><div class="gmail_extra"><div \
class="gmail_quote"><div> <br></div><div><div class="gmail-h5"><blockquote \
class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><div class="gmail_extra"><div \
class="gmail_quote"><div><div class="gmail-m_734087444497039817h5">On Thu, Mar 16, \
2017 at 2:49 PM, Anders Broman <span dir="ltr"><<a \
href="mailto:anders.broman@ericsson.com" \
target="_blank">anders.broman@ericsson.com</a>></span> \
wrote:<br></div></div><blockquote class="gmail_quote" style="margin:0px 0px 0px \
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div><div \
class="gmail-m_734087444497039817h5">
<div lang="SV">
<div class="gmail-m_734087444497039817m_3458223387509012644m_7072940368748552984WordSection1">
<p class="MsoNormal"><span \
style="font-size:11pt;font-family:"calibri",sans-serif" \
lang="EN-US">Hi,<u></u><u></u></span></p> <p class="MsoNormal"><span \
style="font-size:11pt;font-family:"calibri",sans-serif" lang="EN-US">The \
S1AP dissector in trunk is based on </span><span \
style="font-size:9.5pt;font-family:consolas;color:black" lang="EN-US">TS 36.413 \
V13.5.0 (2016-12) so I guess it should decode the message.<u></u><u></u></span></p> \
<p class="MsoNormal"><span style="font-size:9.5pt;font-family:consolas;color:black" \
lang="EN-US">The best is to raise a bug attaching a trace with the </span><span \
lang="EN-US">RerouteNASRequest message and describe what is not dissected \
correctly.<u></u><u></u></span></p> <p class="MsoNormal"><span \
lang="EN-US">Regards<u></u><u></u></span></p> <p class="MsoNormal"><span \
lang="EN-US">Anders</span><span \
style="font-size:11pt;font-family:"calibri",sans-serif" \
lang="EN-US"><u></u><u></u></span></p> <p class="MsoNormal"><span \
style="font-size:11pt;font-family:"calibri",sans-serif" \
lang="EN-US"><u></u> <u></u></span></p> <p class="MsoNormal"><b><span \
style="font-size:11pt;font-family:"calibri",sans-serif" \
lang="EN-US">From:</span></b><span \
style="font-size:11pt;font-family:"calibri",sans-serif" lang="EN-US"> <a \
href="mailto:wireshark-users-bounces@wireshark.org" \
target="_blank">wireshark-users-bounces@wiresh<wbr>ark.org</a> [mailto:<a \
href="mailto:wireshark-users-bounces@wireshark.org" \
target="_blank">wireshark-users-bounce<wbr>s@wireshark.org</a>] <b>On Behalf Of \
</b>Sabyasachi Samal<br> <b>Sent:</b> den 16 mars 2017 10:11<br>
<b>To:</b> Community support list for Wireshark <<a \
href="mailto:wireshark-users@wireshark.org" \
target="_blank">wireshark-users@wireshark.org</a><wbr>><br> <b>Subject:</b> \
[Wireshark-users] R13 S1AP message "Reroute NAS Request" is not decoding \
completely using 2.3.0<u></u><u></u></span></p><div><div \
class="gmail-m_734087444497039817m_3458223387509012644h5"> <p \
class="MsoNormal"><u></u> <u></u></p> <div>
<p class="MsoNormal">Hi,<u></u><u></u></p>
<div>
<p class="MsoNormal">R13 baseline S1AP message "RerouteNASRequest" is not \
decoding completely using 2.3.0. Can anyone suggest how to proceed on this or is \
there any plan supporting this.<br clear="all"> <u></u><u></u></p>
<div>
<p class="MsoNormal"><u></u> <u></u></p>
</div>
<p class="MsoNormal">-- <u></u><u></u></p>
<div>
<div>
<p class="MsoNormal">Regards,<br>
Sabyasachi<u></u><u></u></p>
</div>
</div>
</div>
</div>
</div></div></div>
</div>
<br></div></div>______________________________<wbr>______________________________<wbr>_______________<br>
Sent via: Wireshark-users mailing list <<a \
href="mailto:wireshark-users@wireshark.org" \
target="_blank">wireshark-users@wireshark.org</a><wbr>><br>
Archives: <a href="https://www.wireshark.org/lists/wireshark-users" \
rel="noreferrer" target="_blank">https://www.wireshark.org/list<wbr>s/wireshark-users</a><br>
Unsubscribe: <a href="https://www.wireshark.org/mailman/options/wireshark-users" \
rel="noreferrer" target="_blank">https://www.wireshark.org/mail<wbr>man/options/wireshark-users</a><br>
mailto:<a href="mailto:wireshark-users-request@wireshark.org" \
target="_blank">wireshark-users-reques<wbr>t@wireshark.org</a>?subject=unsubs<wbr>cribe<span \
class="gmail-m_734087444497039817HOEnZb"><font \
color="#888888"><br></font></span></blockquote></div><span \
class="gmail-m_734087444497039817HOEnZb"><font color="#888888"><br><br \
clear="all"><div><br></div>-- <br><div \
class="gmail-m_734087444497039817m_3458223387509012644gmail_signature"><div \
dir="ltr">Regards,<br>Sabyasachi</div></div> </font></span></div>
<br>______________________________<wbr>______________________________<wbr>_______________<br>
Sent via: Wireshark-users mailing list <<a \
href="mailto:wireshark-users@wireshark.org" \
target="_blank">wireshark-users@wireshark.org</a><wbr>><br>
Archives: <a href="https://www.wireshark.org/lists/wireshark-users" \
rel="noreferrer" target="_blank">https://www.wireshark.org/list<wbr>s/wireshark-users</a><br>
Unsubscribe: <a href="https://www.wireshark.org/mailman/options/wireshark-users" \
rel="noreferrer" target="_blank">https://www.wireshark.org/mail<wbr>man/options/wireshark-users</a><br>
mailto:<a href="mailto:wireshark-users-request@wireshark.org" \
target="_blank">wireshark-users-reques<wbr>t@wireshark.org</a>?subject=unsubs<wbr>cribe<br></blockquote></div></div></div><br></div></div></div>
</blockquote></div><br></div></div>
--001a11482484cedd3e054af056be--
["image.png" (image/png)]
___________________________________________________________________________
Sent via: Wireshark-users mailing list <wireshark-users@wireshark.org>
Archives: https://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-users
mailto:wireshark-users-request@wireshark.org?subject=unsubscribe
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic