Actions
Bug #5280
closednfs: ASSERT: attempt to subtract with overflow (compound)
Affected Versions:
Effort:
Difficulty:
Label:
Files
Actions
Added by Victor Julien over 3 years ago. Updated almost 3 years ago.
Files
Philippe can you attach a pcap to reproduce?
Here it is.
To get a pcap from a fuzz_applayerparserparse_* input, I needed to
- Change the header to use fuzzpcap's one
- Use the right ports number for the app-layer protocol being fuzzed (nfs is 2049 0x0801)
- Add a first payload so that app-layer protocol is recognized
- Add acking packets...
Looks like commit 4418fc1b02f47533439fe00789d9c850a24271b2 did not correct nfs4 but only nfs3
Victor, as you did that nfs3: fix partial write record handling, can you do it for NFS4 ?
Victor, do you want to pass this to me ?