[lwip-users] [lwip] TCP ack segment versus OOSEQ handling

lwip-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[lwip-users] [lwip] TCP ack segment versus OOSEQ handling

From:	Andy Valencia
Subject:	[lwip-users] [lwip] TCP ack segment versus OOSEQ handling
Date:	Wed, 08 Jan 2003 22:56:58 -0000

Hi,

We're seeing a problem with the OOSEQ code when a packet with no
payload comes in.  Consider the case where:

        if(inseg.p->tot_len > 0) {
          pcb->recv_data = inseg.p;
          /* Since this pbuf now is the responsibility of the
             application, we delete our reference to it so that we won't
             (mistakingly) deallocate it. */
          inseg.p = NULL;
        }

has in fact a tot_len of 0, thus pcb->recv_data remains NULL.

Now in the OOSEQ handling, the code sequence at:

          if(cseg->p->tot_len > 0) {
            /* Chain this pbuf onto the pbuf that we will pass to
               the application. */
            pbuf_chain(pcb->recv_data, cseg->p);
            cseg->p = NULL;
          }

seems to conflict with this, since it'll try to concatenate onto a NULL
pointer, corresponding to a packet with no data.  We get a segv here since
we're lucky enough to be under an MMU.

Does this scenario make sense to anybody else?  Or have I botched
something in my port?

Thanks,
Andy Valencia
address@hidden
[This message was sent through the lwip discussion list.]

[Prev in Thread]

Current Thread

[Next in Thread]

[lwip-users] [lwip] TCP ack segment versus OOSEQ handling, Andy Valencia <=
- [lwip-users] [lwip] TCP ack segment versus OOSEQ handling, Andy Valencia, 2003/01/09

Prev by Date: [lwip-users] Re: [lwip] lots of fixes: I'll see your "++ip_id" and raise you this patch
Next by Date: [lwip-users] Re: [lwip] The future of lwIP
Previous by thread: [lwip-users] Re: [lwip] lots of fixes: I'll see your "++ip_id" and raise you this patch
Next by thread: [lwip-users] [lwip] TCP ack segment versus OOSEQ handling
Index(es):
- Date
- Thread