d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

As we now may check the TCP header window field, make sure we pullup

Browse Source 
enough into the mbuf data area.  Solve this problem once and for all
by pulling up the entire (standard) header for TCP and UDP, and four
bytes of header for ICMP (enough for type, code and cksum fields).
This commit is contained in:
Ruslan Ermilov 2000-10-06 12:12:09 +00:00
parent 15dde4b2f5
commit c0752e1657
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
sys/netinet/ip_fw.c
View File

@ -991,7 +991,7 @@ ip_fw_chk(struct ip **pip, int hlen,
*/
switch (proto) {
case IPPROTO_TCP :
PULLUP_TO(hlen + 14);
PULLUP_TO(hlen + sizeof(struct tcphdr));
tcp =(struct tcphdr *)((u_int32_t *)ip + ip->ip_hl);
dst_port = tcp->th_dport ;
src_port = tcp->th_sport ;
@ -999,20 +999,20 @@ ip_fw_chk(struct ip **pip, int hlen,
break ;
case IPPROTO_UDP :
PULLUP_TO(hlen + 4);
PULLUP_TO(hlen + sizeof(struct udphdr));
udp =(struct udphdr *)((u_int32_t *)ip + ip->ip_hl);
dst_port = udp->uh_dport ;
src_port = udp->uh_sport ;
break;
case IPPROTO_ICMP:
PULLUP_TO(hlen + 2);
PULLUP_TO(hlen + 4); /* type, code and checksum. */
flags = ((struct icmp *)
((u_int32_t *)ip + ip->ip_hl))->icmp_type ;
break ;
default :
src_port = dst_port = 0 ;
break;
}
#undef PULLUP_TO
last_pkt.src_ip = ntohl(src_ip.s_addr) ;