Hi,
Since we’re are 2.0.12 at the moment it would be interesting to see if that has been addressed already. If not, then a bug report would be most welcome, once bugzilla is up-and-running again.
Thanks, Jaap
Dear Members,
I have a PCAP file which contains a fragmented 802.11 A-MSDU. At the last frame where reassembly happens, Wireshark tells me: Malformed Packet (Exception occured). After analyzing the issue carefully, I came to the conclusion that there might be a bug in Wireshark.
The reason being is that if I change the simulator to write the MSDU subframe header length field in little endian byte order, then the packet validation error goes away. In this case, I can see all MSDUs properly in the reassembled A-MSDU.
Unfortunately, at the same time a new error appears due to incorrect MSDU length during dissecting. I think the error is caused by the fact that the packet validator assumes little endian byte order, while the dissecting code *correctly* assumes big endian byte order as required by the standard.
I am using Wireshark 2.0.2. Could somebody give me some hints whether I'm right or wrong?
Best regards, Levente Meszaros
|
Attachment:
amsdu.pcap
Description: application/vnd.tcpdump.pcap
