]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 879462e) | patch
Add comment for accidentally committed unrelated change in r325960.
authorAndrey V. Elsukov <ae@FreeBSD.org>
Fri, 17 Nov 2017 23:25:06 +0000 (23:25 +0000)
committerAndrey V. Elsukov <ae@FreeBSD.org>
Fri, 17 Nov 2017 23:25:06 +0000 (23:25 +0000)
commit66f84fabb33892cc941ded8c07de2b8c6523fd10
treed1651562330d47f1c8413da80a400d2cf6c5c785tree | snapshot
parent879462e916b7e7a0f1acb6933846db52366832e7commit | diff
Add comment for accidentally committed unrelated change in r325960.

Do not invoke IPv4 NAT handler for non IPv4 packets. Libalias expects
a packet is IPv4. And in case when it is IPv6, it just translates them
as IPv4. This leads to corruption and in some cases to panics.
In particular a panic can happen when value of ip6_plen modified to
something that leads to IP fragmentation, but actual packet length does
not match the IP length.

Packets that are not IPv4 will be dropped by NAT rule.

Reported by: Viktor Dukhovni <freebsd at dukhovni dot org>
MFC after: 1 week
sys/netpfil/ipfw/ip_fw2.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.