Re: [PATCH] net/ipv6/exthdrs.c: Strict PadN option checking

From: David Miller
Date: Thu Apr 12 2012 - 17:39:41 EST


From: Eldad Zack <eldad@xxxxxxxxxxxxxxx>
Date: Thu, 12 Apr 2012 23:31:59 +0200

> Added strict checking of PadN, as PadN can be used to increase header
> size and thus push the protocol header into the 2nd fragment.
>
> PadN is used to align the options within the Hop-by-Hop or
> Destination Options header to 64-bit boundaries. The maximum valid
> size is thus 7 bytes.
> RFC 4942 recommends to actively check the "payload" itself and
> ensure that it contains only zeroes.
>
> See also RFC 4942 section 2.1.9.5.
>
> Signed-off-by: Eldad Zack <eldad@xxxxxxxxxxxxxxx>

Applied after fixing up the comment formatting.

Thanks.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/