diff options
author | Xin Long <lucien.xin@gmail.com> | 2021-10-20 13:42:44 +0200 |
---|---|---|
committer | Jakub Kicinski <kuba@kernel.org> | 2021-10-22 21:36:44 +0200 |
commit | a64b341b8695e1c744dd972b39868371b4f68f83 (patch) | |
tree | 8a0ff9b2df052f798e5029397836f72a126d4b9b /LICENSES | |
parent | sctp: fix the processing for INIT_ACK chunk (diff) | |
download | linux-a64b341b8695e1c744dd972b39868371b4f68f83.tar.xz linux-a64b341b8695e1c744dd972b39868371b4f68f83.zip |
sctp: fix the processing for COOKIE_ECHO chunk
1. In closed state: in sctp_sf_do_5_1D_ce():
When asoc is NULL, making packet for abort will use chunk's vtag
in sctp_ootb_pkt_new(). But when asoc exists, vtag from the chunk
should be verified before using peer.i.init_tag to make packet
for abort in sctp_ootb_pkt_new(), and just discard it if vtag is
not correct.
2. In the other states: in sctp_sf_do_5_2_4_dupcook():
asoc always exists, but duplicate cookie_echo's vtag will be
handled by sctp_tietags_compare() and then take actions, so before
that we only verify the vtag for the abort sent for invalid chunk
length.
Fixes: 1da177e4c3f4 ("Linux-2.6.12-rc2")
Signed-off-by: Xin Long <lucien.xin@gmail.com>
Acked-by: Marcelo Ricardo Leitner <marcelo.leitner@gmail.com>
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
Diffstat (limited to 'LICENSES')
0 files changed, 0 insertions, 0 deletions