[ipxe-devel] [Etherboot-developers] [PATCH 7/7] [ipv4] Limit number of fragment buffers

Michael Brown mbrown at fensystems.co.uk
Wed Nov 16 15:31:31 UTC 2011


On Wednesday 16 Nov 2011 13:56:53 Michal Kubecek wrote:
> For every (first) IPv4 fragment received, a buffer of size
> IPV4_FRAG_IOB_SIZE (currently 1500 bytes) is allocated. Limiting the
> number of fragment buffers prevents memory exhaustion if too many
> fragments are received without being assembled (e.g. because of wrongly
> configured firewall).

IPv4 fragmentation reassembly was already fixed back in July:

  http://git.ipxe.org/ipxe.git/commitdiff/13186b6

You are working on the obsolete and unmaintained gPXE codebase.  Please 
upgrade to iPXE, where many of the bugs in gPXE have already been fixed.

Michael



More information about the ipxe-devel mailing list