Code Review / vpp.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 595d6f8) | patch
ipsec: fix trailing data overflow 32/23532/2
authorFilip Tehlar <ftehlar@cisco.com>
Mon, 18 Nov 2019 22:21:37 +0000 (22:21 +0000)
committerDamjan Marion <dmarion@me.com>
Fri, 22 Nov 2019 12:36:22 +0000 (12:36 +0000)
commit8cdb1a0a698e2a51c9151401de4a57cae2d29d48
treed94ddb47fdb16b65e3e05f92a2cf289708b4ecf3tree | snapshot
parent595d6f8b7cadfcd7b0a7c3a28b787c476dbebabacommit | diff
ipsec: fix trailing data overflow

IPsec writes trailing data at the end of the buffer without checking
if there is enough space. If the packet length equals buffer size this
leads to rewiting of the next buffer header in the pool.

Type: fix

Change-Id: Iceb27bb724c7243863a4b532aad0808051b7d74c
Signed-off-by: Filip Tehlar <ftehlar@cisco.com>
src/vnet/ipsec/esp_encrypt.c diff | blob | history
Vector Packet Processing