Pavel Roskin wrote :
>
> orinoco: Information leakage due to incorrect padding
>
> The orinoco driver can send uninitialized data exposing random pieces of
> the system memory. This happens because data is not padded with zeroes
> when its length needs to be increased.
I believe the 802.11 doesn't specify and doesn't require
padding, therefore in theory, none of the 802.11 drivers need to do
padding.
Padding is specific to the way the original Ethernet protocol
detect collisions over the wire, it require a minimum message length
due to the propagation and reflection time of the packet. Propagation
time is way faster over the air and we can't detect collisions anyway,
therefore it doesn't make sense to implement padding. It's just
unnecessary overhead.
Now, I'm not 100% certain that all firmware and TCP/IP stack
would be happy with that, but it's worth a try at some point.
Have fun...
Jean
-------------------------------------------------------
This SF.Net email is sponsored by:
Power Architecture Resource Center: Free content, downloads, discussions,
and more. http://solutions.newsforge.com/ibmarch.tmpl
|
