projects / platform / adaptation / renesas_rcar / renesas_kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dd775ae) | patch
openvswitch: Add length check when retrieving TCP flags.
authorJesse Gross <jesse@nicira.com>
Mon, 2 Apr 2012 21:26:27 +0000 (14:26 -0700)
committerJesse Gross <jesse@nicira.com>
Mon, 2 Apr 2012 21:28:57 +0000 (14:28 -0700)
commitbf32fecdc1851ad9ca960f56771b798d17c26cf1
tree039b57775613b56c84d2651071cfb7cc8cd536cftree | snapshot
parentdd775ae2549217d3ae09363e3edb305d0fa19928commit | diff
openvswitch: Add length check when retrieving TCP flags.

When collecting TCP flags we check that the IP header indicates that
a TCP header is present but not that the packet is actually long
enough to contain the header.  This adds a check to prevent reading
off the end of the packet.

In practice, this is only likely to result in reading of bad data and
not a crash due to the presence of struct skb_shared_info at the end
of the packet.

Signed-off-by: Jesse Gross <jesse@nicira.com>
net/openvswitch/flow.c diff | blob | history
Domain: System / Uncategorized;