Google Git
Sign in
chromium / chromiumos / third_party / kernel / 6f56701bc696772d64bf71a96d3c73489dc2e49b
commit6f56701bc696772d64bf71a96d3c73489dc2e49b[log] [tgz]
authorPablo Neira Ayuso <pablo@netfilter.org>Thu Jul 25 08:37:49 2013
committerChromeOS Commit Bot <chromeos-commit-bot@chromium.org>Mon Jan 22 18:26:34 2018
treec8a282c41dc33317edbc52c9031e52bf333f43c6
parent676824da5419ddaa6b5f34d9914f7e068512a302 [diff]
UPSTREAM: netfilter: xt_TCPMSS: fix handling of malformed TCP header and options

Make sure the packet has enough room for the TCP header and
that it is not malformed.

While at it, store tcph->doff*4 in a variable, as it is used
several times.

This patch also fixes a possible off by one in case of malformed
TCP options.

BUG=chromium:803812
TEST=Build and run

Change-Id: I956100476415c1c01908768c60c30c82d7fdf78c
Reported-by: Julian Anastasov <ja@ssi.bg>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Guenter Roeck <groeck@chromium.org>
(cherry picked from commit 71ffe9c77dd7a2b62207953091efa8dafec958dd)
(cherry picked from commit 0f465f72253fe2e10fb80deeea93f1e5698c62d7)
Signed-off-by: Guenter Roeck <groeck@chromium.org>
Reviewed-on: https://chromium-review.googlesource.com/875887
1 file changed
tree: c8a282c41dc33317edbc52c9031e52bf333f43c6
  1. arch/
  2. block/
  3. chromeos/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .gitignore
  24. .mailmap
  25. .scmversion
  26. COMMIT-QUEUE.ini
  27. COPYING
  28. CREDITS
  29. Kbuild
  30. Kconfig
  31. MAINTAINERS
  32. Makefile
  33. PRESUBMIT.cfg
  34. README
  35. REPORTING-BUGS