Code Review / vpp.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: b1b4b5c) | patch
ipsec: fix trailing data overflow 35/23535/1
authorFilip Tehlar <ftehlar@cisco.com>
Mon, 18 Nov 2019 22:21:37 +0000 (22:21 +0000)
committerFilip Tehlar <ftehlar@cisco.com>
Tue, 19 Nov 2019 12:24:34 +0000 (12:24 +0000)
commitc2b4b3b610e8de94c4b64bab0324e5da3019b920
treeb51c8a5e6490cdf51bb8f571036adf7edfd8f74dtree | snapshot
parentb1b4b5cf58aa6247bb0df9163843fce81cedf1decommit | diff
ipsec: fix trailing data overflow

IPsec writes trailing data at the end of the buffer without checking
if there is enough space. If the packet length equals buffer size this
leads to rewiting of the next buffer header in the pool.

Type: fix

Change-Id: Iceb27bb724c7243863a4b532aad0808051b7d74c
Signed-off-by: Filip Tehlar <ftehlar@cisco.com>
src/vnet/ipsec/esp_encrypt.c diff | blob | history
Vector Packet Processing