The ip_frag library had a couple of issues found during review. The use of TAILQ made assumptions about TAILQ_REMOVE, and the hash function usage could be abused by attacker.
Stephen Hemminger (2): ip_frag: fix unsafe TAILQ usage ip_frag: randomize hash seed lib/ip_frag/ip_frag_common.h | 1 + lib/ip_frag/ip_frag_internal.c | 18 ++++++++---------- lib/ip_frag/ip_reassembly.h | 1 + lib/ip_frag/rte_ip_frag_common.c | 21 +++++++++++---------- 4 files changed, 21 insertions(+), 20 deletions(-) -- 2.53.0
