Cap reassembled IPv6 packets at 65535 octets

IPv4 can accept 65536-octet reassembled packets. Test: - ipv4_test.TestInvalidFragments - ipv4_test.TestReceiveFragments - ipv6.TestInvalidIPv6Fragments - ipv6.TestReceiveIPv6Fragments Fixes #3770 PiperOrigin-RevId: 331382977
author: Toshi Kikuchi <toshik@google.com> 2020-09-12 23:19:34 -0700
committer: gVisor bot <gvisor-bot@google.com> 2020-09-12 23:21:27 -0700
commit: b6ca96b9b9e71ba57653cf9d3ef0767771949378 (patch)
tree: 1be79e4ee11876cfb1742b6514ab7dc70fc93c29 /pkg/tcpip/header/ipv4.go
parent: 3ca73841d7ec1218cab21f7be2433f739be5d367 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/pkg/tcpip/header/ipv4.go b/pkg/tcpip/header/ipv4.go
index 680eafd16..e8816c3f4 100644
--- a/pkg/tcpip/header/ipv4.go
+++ b/pkg/tcpip/header/ipv4.go
@@ -88,6 +88,16 @@ const (
 	// units, the header cannot exceed 15*4 = 60 bytes.
 	IPv4MaximumHeaderSize = 60
 
+	// IPv4MaximumPayloadSize is the maximum size of a valid IPv4 payload.
+	//
+	// Linux limits this to 65,515 octets (the max IP datagram size - the IPv4
+	// header size). But RFC 791 section 3.2 discusses the design of the IPv4
+	// fragment "allows 2**13 = 8192 fragments of 8 octets each for a total of
+	// 65,536 octets. Note that this is consistent with the the datagram total
+	// length field (of course, the header is counted in the total length and not
+	// in the fragments)."
+	IPv4MaximumPayloadSize = 65536
+
 	// MinIPFragmentPayloadSize is the minimum number of payload bytes that
 	// the first fragment must carry when an IPv4 packet is fragmented.
 	MinIPFragmentPayloadSize = 8
author	Toshi Kikuchi <toshik@google.com>	2020-09-12 23:19:34 -0700
committer	gVisor bot <gvisor-bot@google.com>	2020-09-12 23:21:27 -0700
commit	b6ca96b9b9e71ba57653cf9d3ef0767771949378 (patch)
tree	1be79e4ee11876cfb1742b6514ab7dc70fc93c29 /pkg/tcpip/header/ipv4.go
parent	3ca73841d7ec1218cab21f7be2433f739be5d367 (diff)