Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 10006] New: IPv6 Mobility Header Link Layer Address is parsed incorrectly

Wireshark-bugs: [Wireshark-bugs] [Bug 10006] New: IPv6 Mobility Header Link Layer Address is par

Date: Fri, 18 Apr 2014 16:33:32 +0000

Bug ID	10006
Summary	IPv6 Mobility Header Link Layer Address is parsed incorrectly
Classification	Unclassified
Product	Wireshark
Version	1.6.6
Hardware	x86-64
OS	Windows 7
Status	UNCONFIRMED
Severity	Normal
Priority	Low
Component	Wireshark
Assignee	[email protected]
Reporter	[email protected]

Created attachment 12711 [details]
A packet with IPv6 layer that contains a Link Layer address mobility option

Build Information:
Version 1.6.6 (SVNRev 41803 from /trunk-1.6)

Copyright 1998-2012 Gerald Combs <[email protected]> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (64-bit) with GTK+ 2.22.1, with GLib 2.26.1, with WinPcap (version
unknown), with libz 1.2.5, without POSIX capabilities, without libpcre, without
SMI, with c-ares 1.7.1, with Lua 5.1, without Python, with GnuTLS 2.12.18, with
Gcrypt 1.4.6, without Kerberos, with GeoIP, with PortAudio V19-devel (built Mar
27 2012), with AirPcap.

Running on 64-bit Windows 7 Service Pack 1, build 7601, with WinPcap version
4.1.2 (packet.dll version 4.1.0.2001), based on libpcap version 1.0 branch
1_0_rel0b (20091008), GnuTLS 2.12.18, Gcrypt 1.4.6, without AirPcap.

Built using Microsoft Visual C++ 9.0 build 21022

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.
--
Discovered while working on Pcap.Net (http://pcapdot.net).

Looking at RFC 5568 (http://tools.ietf.org/html/rfc5568#section-6.4.3), it says
that the Link-Layer Address (LLA) Option, should have an address right after
the option code.
In Wireshark, in the attached example, you can see that it says:
Link-layer address: 86:f2:70:7b:be:0e:99:cc:86:be:8d:be:e3:06
While the byte after the option code is 0x88 and not 0x86.
I believe the correct Link-layer address should be:
88:86:f2:70:7b:be:0e:99:cc:86:be:8d:be:e3.

Thanks,

Boaz.

You are receiving this mail because:

You are watching all bug changes.

Follow-Ups:
- [Wireshark-bugs] [Bug 10006] IPv6 Mobility Header Link Layer Address is parsed incorrectly
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 10006] IPv6 Mobility Header Link Layer Address is parsed incorrectly
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 10005] IPv6 Authentication Header not parsed after Mobility Header
Next by Date: [Wireshark-bugs] [Bug 10006] IPv6 Mobility Header Link Layer Address is parsed incorrectly
Previous by thread: [Wireshark-bugs] [Bug 10005] IPv6 Authentication Header not parsed after Mobility Header
Next by thread: [Wireshark-bugs] [Bug 10006] IPv6 Mobility Header Link Layer Address is parsed incorrectly
Index(es):
- Date
- Thread