TCP header length 20 bytes with Timestamps
I have Wireshark Version 4.2.2 on Windows 10.
It is my understanding that Timestamps go into the TCP options section of the header. According to what I have read TCP headers containing this option increase by 10 bytes (8 bytes for the two timestamp values and 2 bytes to indicate the option value and length). But Wireshark is saying the header length is only 20 bytes even though I can see the timestamp values? I tried to add a picture but don't have enough reputation. On my Ubuntu computer Wireshark Version 3.6.2 says the TCP header with timestamps is 32 bytes as it is padded out with two NOP bytes. Why is Wireshark saying the TCP header length is only 20 bytes with timestamps on the Windows computer?
Can you share a capture file (stick it on a public file share and update question with a link to it)?
(more)Looking at a sample from the Wireshark wiki (nfsv4.1_pnfs.cap NFSv4.1 trace containing pNFS.) with Version 4.2.2 (v4.2.2-0-g404592842786):