Skip to content

nhrpd: fixes duplicate auth extension (backport #16808)#16822

Merged
donaldsharp merged 1 commit intostable/9.0from
mergify/bp/stable/9.0/pr-16808
Sep 13, 2024
Merged

nhrpd: fixes duplicate auth extension (backport #16808)#16822
donaldsharp merged 1 commit intostable/9.0from
mergify/bp/stable/9.0/pr-16808

Conversation

@mergify
Copy link
Copy Markdown

@mergify mergify bot commented Sep 13, 2024

When an NHRP peer was forwarding a message, it was copying all extensions from the originally received packet. The authentication extension must be regenerated hop by hop per RFC2332. This fix checks for the auth extension when copying extensions and omits the original packet auth and instead regenerates a new auth extension.

Fixes #16507

This is an automatic backport of pull request #16808 done by Mergify.

@garyachy @mergify
nhrpd: fixes duplicate auth extension
be24d72 
When an NHRP peer was forwarding a message, it was copying all
extensions from the originally received packet. The authentication
extension must be regenerated hop by hop per RFC2332.
This fix checks for the auth extension when copying extensions
and omits the original packet auth and instead regenerates a new auth extension.

Fix bug #16507

Signed-off-by: Denys Haryachyy <garyachy@gmail.com>
(cherry picked from commit 8e3c278)
@mergify mergify bot mentioned this pull request Sep 13, 2024
Merged
@frrbot frrbot bot added the nhrp label Sep 13, 2024
@donaldsharp donaldsharp merged commit c9d5af7 into stable/9.0 Sep 13, 2024
@mergify mergify bot deleted the mergify/bp/stable/9.0/pr-16808 branch September 13, 2024 23:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

nhrp size/XS stable/9.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@donaldsharp @garyachy