]> The Tcpdump Group git mirrors - tcpdump/blobdiff - print-macsec.c
projects / tcpdump / blobdiff
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
RADIUS: Add a comment about "don't use GET_IP6ADDR_STRING()"
[tcpdump] / print-macsec.c
diff --git a/print-macsec.c b/print-macsec.c
index 0cf8cd67385987a47d3de2e5cc821b55bb7a5767..607f696ef2654e7bcf6b0173f035e45afc1dc461 100644 (file)
--- a/print-macsec.c
+++ b/print-macsec.c
@@ -25,7 +25,7 @@
 #include <config.h>
 #endif
 
-#include <netdissect-stdinc.h>
+#include "netdissect-stdinc.h"
 
 #include "netdissect.h"
 #include "addrtoname.h"
@@ -217,6 +217,13 @@ int macsec_print(netdissect_options *ndo, const u_char **bp,
        }
        *lengthp -= MACSEC_DEFAULT_ICV_LEN;
        *caplenp -= MACSEC_DEFAULT_ICV_LEN;
+       /*
+        * Update the snapend thus the ICV field is not in the payload for
+        * the caller.
+        * The ICV (Integrity Check Value) is at the end of the frame, after
+        * the secure data.
+        */
+       ndo->ndo_snapend -= MACSEC_DEFAULT_ICV_LEN;
 
        /*
         * If the SL field is non-zero, then it's the length of the
[mirror] the TCPdump network dissector