cvs commit: src/sys/net if_bridge.c
Darren Reed
darrenr at hub.freebsd.org
Wed Oct 25 17:53:02 UTC 2006
On Sat, Apr 29, 2006 at 05:37:25AM +0000, Andrew Thompson wrote:
> thompsa 2006-04-29 05:37:25 UTC
>
> FreeBSD src repository
>
> Modified files:
> sys/net if_bridge.c
> Log:
> Add support for fragmenting ipv4 packets.
>
> The packet filter may reassemble the ip fragments and return a packet that is
> larger than the MTU of the sending interface. There is no check for DF or icmp
> replies as we can only get a large packet to fragment by reassembling a
> previous fragment, and this only happens after a call to pfil(9).
I'm a long time in catching up with this change, but architecturally,
this change is very very wrong.
A bridge should have _no_ part in fragmenting up an IP packet
regardless of what options are set (or not set) in an IP header.
Darren
More information about the cvs-src
mailing list