New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

libipsec: Fix "packet too short" error when parsing fragmented packets #80

Closed
wants to merge 1 commit into
base: master
from

Conversation

Projects
None yet
2 participants
@rossoneri91

rossoneri91 commented Aug 31, 2017

Should only parse the transport header of an IP packet if it's not fragmented or is the first fragment

libipsec: Fix "packet too short" error when parsing fragmented packets
Should only parse the transport header of an IP packet if it's not fragmented of is the first fragment
@tobiasbrunner

This comment has been minimized.

Member

tobiasbrunner commented Sep 1, 2017

Hm, wouldn't the ip_off field be non-zero in the first fragment, because the MF flag is set (which is part of the 16-bit field)? I pushed an alternative patch to the gh80-libipsec-ip-frag branch (also includes a change for IPv6, where there was no such error but the next header was not correct for fragmented packets). Let me know if that works for you.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment