SCTP: Allow ADD_IP to work with AUTH for backward compatibility. This patch adds a tunable that will allow ADD_IP to work without AUTH for backward compatibility. The default value is off since the default value for ADD_IP is off as well. People who need to use ADD-IP with older implementations take risks of connection hijacking and should consider upgrading or turning this tunable on. Signed-off-by: Vlad Yasevich <vladislav.yasevich@hp.com>

commit: 73d9c4fd1a6ec4950b2eac8135d35506bf400d6c [log] [tgz]
author: Vlad Yasevich <vladislav.yasevich@hp.com> Wed Oct 24 17:24:26 2007 -0400
committer: Vlad Yasevich <vladislav.yasevich@hp.com> Wed Nov 07 11:39:27 2007 -0500
tree: b2d6fe707cdc790c9b42a2487d2892e97c6561ba
parent: 88799fe5ec65fad1d5cb1d4dc5d8f78edb949f1c [diff] [blame]
diff --git a/net/sctp/sysctl.c b/net/sctp/sysctl.c
index 0669778..da4f157 100644
--- a/net/sctp/sysctl.c
+++ b/net/sctp/sysctl.c

@@ -263,6 +263,15 @@
 		.proc_handler	= &proc_dointvec,
 		.strategy	= &sysctl_intvec
 	},
+	{
+		.ctl_name	= CTL_UNNUMBERED,
+		.procname	= "addip_noauth_enable",
+		.data		= &sctp_addip_noauth,
+		.maxlen		= sizeof(int),
+		.mode		= 0644,
+		.proc_handler	= &proc_dointvec,
+		.strategy	= &sysctl_intvec
+	},
 	{ .ctl_name = 0 }
 };
commit	73d9c4fd1a6ec4950b2eac8135d35506bf400d6c	[log] [tgz]
author	Vlad Yasevich <vladislav.yasevich@hp.com>	Wed Oct 24 17:24:26 2007 -0400
committer	Vlad Yasevich <vladislav.yasevich@hp.com>	Wed Nov 07 11:39:27 2007 -0500
tree	b2d6fe707cdc790c9b42a2487d2892e97c6561ba
parent	88799fe5ec65fad1d5cb1d4dc5d8f78edb949f1c [diff] [blame]