]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f6258ba) | patch
Bridged packets are supplied to the firewall with their IP header
authoriedowse <iedowse@FreeBSD.org>
Fri, 27 Dec 2002 17:43:25 +0000 (17:43 +0000)
committeriedowse <iedowse@FreeBSD.org>
Fri, 27 Dec 2002 17:43:25 +0000 (17:43 +0000)
commitf5462007056ca440dfe2c11ce75452bcdab12f57
tree72e2f9fa523fd23d9944eaa63a3d75799d4d3c99tree | snapshot
parentf6258ba488075f7a4561dbca1e316dd438a7af5ccommit | diff
Bridged packets are supplied to the firewall with their IP header
in network byte order, but icmp_error() expects the IP header to
be in host order and the code here did not perform the necessary
swapping for the bridged case. This bug causes an "icmp_error: bad
length" panic when certain length IP packets (e.g. ip_len == 0x100)
are rejected by the firewall with an ICMP response.

MFC after: 3 days
sys/netinet/ip_fw.c diff | blob | history
sys/netinet/ip_fw2.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.