Site Navigation

Date:      Fri, 27 Dec 2002 09:43:25 -0800 (PST)
From:      Ian Dowse <iedowse@FreeBSD.org>
To:        cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject:   cvs commit: src/sys/netinet ip_fw.c ip_fw2.c
Message-ID:  <200212271743.gBRHhPiA039842@repoman.freebsd.org>

---

next in thread | raw e-mail | index | archive | help

---

iedowse     2002/12/27 09:43:25 PST

  Modified files:
    sys/netinet          ip_fw.c ip_fw2.c 
  Log:
  Bridged packets are supplied to the firewall with their IP header
  in network byte order, but icmp_error() expects the IP header to
  be in host order and the code here did not perform the necessary
  swapping for the bridged case. This bug causes an "icmp_error: bad
  length" panic when certain length IP packets (e.g. ip_len == 0x100)
  are rejected by the firewall with an ICMP response.
  
  MFC after:      3 days
  
  Revision  Changes    Path
  1.190     +6 -1      src/sys/netinet/ip_fw.c
  1.22      +8 -2      src/sys/netinet/ip_fw2.c

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200212271743.gBRHhPiA039842>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact