Question: IP fragmentation allows oversized IP packets to be split to fit on a smaller network. They are re-assembled on the destination machine. As the packet

IP fragmentation allows oversized IP packets to be split to fit

IP fragmentation allows oversized IP packets to be split to fit on a smaller network. They are re-assembled on the destination machine. As the packet fragments can overlap, we need to decide data acceptance policy for overlapping segments. In our operating system Zumba, if we find that the current fragment's fp->offset to be inside the end (prev->end) of a previous fragment (prev), then we align it such that old data is not replaced. The current segment can only start writing (decided by ptr) at the end of the previous segment. This is ensured by the following C code segment. if (prev != NULL && fp->offset end) // overlapping fragments i - prev->end - fp->offset; fp->offset += i; /* offset ptr into datagram */ ptr += i; //shift to the end of the previous fragment /* ptr into fragment data */ After the above structure, the offset and ptr values are passed to another function, where the length of the current fragment fp is computed as follows fp->len = fp-> end- fp->offset; a) What can go wrong with this? Demonstrate a possible vulnerability that can arise due to the above code? b) How can you fix this vulnerability? Propose a fix to the problem IP fragmentation allows oversized IP packets to be split to fit on a smaller network. They are re-assembled on the destination machine. As the packet fragments can overlap, we need to decide data acceptance policy for overlapping segments. In our operating system Zumba, if we find that the current fragment's fp->offset to be inside the end (prev->end) of a previous fragment (prev), then we align it such that old data is not replaced. The current segment can only start writing (decided by ptr) at the end of the previous segment. This is ensured by the following C code segment. if (prev != NULL && fp->offset end) // overlapping fragments i - prev->end - fp->offset; fp->offset += i; /* offset ptr into datagram */ ptr += i; //shift to the end of the previous fragment /* ptr into fragment data */ After the above structure, the offset and ptr values are passed to another function, where the length of the current fragment fp is computed as follows fp->len = fp-> end- fp->offset; a) What can go wrong with this? Demonstrate a possible vulnerability that can arise due to the above code? b) How can you fix this vulnerability? Propose a fix to the

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

Please submit Steps 3, 4, 5, 6, and 7 separately, before submitting the completed project 1 In CCA 610: Cloud Services and Technology , you assumed the role of an IT analyst atBallotOnline, a company...

Q:

work on this professor Please submit Steps 3, 4, 5, 6, and 7 separately, before submitting the completed project 1 In CCA 610: Cloud Services and Technology , you assumed the role of an IT analyst...

Q:

Exp02. Internet Protocol (ARP) Purpose 1. Learn the message format of IP datagrams 2. Learn IP checksum calculation method 3. Learn subnet mask and route forwarding 4. Understand the meaning of a...

Q:

Exp02. Internet Protocol (ARP) Purpose 1. Learn the message format of IP datagrams 2. Learn IP checksum calculation method 3. Learn subnet mask and route forwarding 4. Understand the meaning of a...

Q:

[7] [10 points] (1) [4 points] Explain and illustrate how the IP fragmentation works. (2) [2 points] Why do we need to perform IP fragmentation? (3) [2 points] What is the main disadvantage of IP...

Q:

Subject: data communication and computer networking plz i need this in 2 hour at least. Answer the following short questions: [20] a. Consider a simple application-level protocol built on top of UDP...

Q:

Question IP Fragmentation S0 points Consider the following network. R1 R2 H1 H2 Assuming that host H1 has An IP datagram of length 3280 bytes of data (including header (Header is equal to 20 bytes))...

Q:

1,(10%) The following figure shows the fields in packets for IP fragmentation: length ID fragflag-offset - | =25104 =X =0 =0 Assume the value of the length field in IP header is 3280 bytes (the...

Q:

The following figure shows the fields in packets for IP fragmentation: length id fragflag offset 2510 x 0 0 Assume the value of the length field in IP header is 3280 bytes (the length of IP header is...

Q:

During a network audit, it is discovered that a significant amount of IP fragmentation is occurring, leading to performance issues. The network uses both IPv 4 and IPv 6 protocols. The network team...

Q:

It was suggested that five is the minimum number of data points for the least likely category when constructing discrete distributions. In many cases, however, we must estimate probabilities that are...

Q:

Jacks Pty Ltd (ASX Listed Firm) provides mechanical services to the customers. Table below shows an extract of its balance sheet as at 30 June 2020: Jacks Balance Sheet as at 30 June 2020 (Extract) ...

Q:

One fixed - rate mortgage pool has a 7 5 0 PSA and a second fixed - rate pool has a 1 5 0 PSA. The pool with the higher PSA than the pool with the lower PSA. probably has a higher coupon II ....

Q:

What were the similarities and differences in European and Chinese mentalities that led to their oceanic explorations in the 15th century?

Q:

=+ e. a recent college graduate deciding whether to go to graduate school

Q:

=+go skiing. What is the true cost of going skiing? Now suppose you had been planning to spend the day studying at the library. What is the cost of going skiing in this case? Explain.

Q:

=+ c. a company president deciding whether to open a new factory