CVSROOT: /cvs
Module name: src
Changes by: bl...@cvs.openbsd.org 2025/02/10 03:20:29
Modified files:
sys/net : Tag: OPENBSD_7_5 pf_norm.c
Log message:
Fix pf fragment hole count.
Fragment reassembly finishes when no holes are left in the fragment
queue. In certain overlap conditions, the hole counter was wrong
and pf(4) created an incomplete IP packet. Before adjusting the
length, remove the overlapping fragment from the queue and insert
it again afterwards. pf_frent_remove() and pf_frent_insert() adjust
the hole counter automatically.
bug reported and fix tested by Lucas Aubard with Johan Mazel, Gilles
Guette and Pierre Chifflier; OK claudio@
this is errata/7.5/016_pffrag.patch
