git://git.onelab.eu / linux-2.6.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: b1094d2)
- merge revision 1.9
authorMark Huang <mlhuang@cs.princeton.edu>
Tue, 8 Feb 2005 20:12:00 +0000 (20:12 +0000)
committerMark Huang <mlhuang@cs.princeton.edu>
Tue, 8 Feb 2005 20:12:00 +0000 (20:12 +0000)
date: 2005/02/08 20:11:39;  author: mlhuang;  state: Exp;  lines: +17 -0
- PL4184 fix: Suppress kernel ICMP echo replies if the echo ID is bound
  to a (presumably raw) socket

net/ipv4/icmp.c patch | blob | history

diff --git a/net/ipv4/icmp.c b/net/ipv4/icmp.c
index e4a4a09..e75fde6 100644 (file)
--- a/net/ipv4/icmp.c
+++ b/net/ipv4/icmp.c
@@ -1035,6 +1035,21 @@ int icmp_rcv(struct sk_buff *skb)
                }
        }
 
+       /* VNET: Bypass stack if the echo ID was bound to a (presumably raw) socket */
+       if (skb->sk) {
+               switch (icmph->type) {
+               case ICMP_ECHOREPLY:
+               case ICMP_ECHO:
+               case ICMP_TIMESTAMP:
+               case ICMP_TIMESTAMPREPLY:
+               case ICMP_INFO_REQUEST:
+               case ICMP_INFO_REPLY:
+               case ICMP_ADDRESS:
+               case ICMP_ADDRESSREPLY:
+                       goto drop;
+               }
+       }
+
        ICMP_INC_STATS_BH(icmp_pointers[icmph->type].input_entry);
        icmp_pointers[icmph->type].handler(skb);
 
linux-2.6