Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 97e3ecd112ba45eb217cddab59f48659bc15d9d0^! / . / net / ipv4
commit97e3ecd112ba45eb217cddab59f48659bc15d9d0[log] [tgz]
authorstephen hemminger <shemminger@vyatta.com>Thu Mar 18 11:27:32 2010 +0000
committerDavid S. Miller <davem@davemloft.net>Fri Mar 19 21:00:42 2010 -0700
tree2e50eb442323387fd998e99ec560f58f1cdaf54e
parent10414444cb8a8ee8893e00390b7cf40502e28352 [diff]
TCP: check min TTL on received ICMP packets

This adds RFC5082 checks for TTL on received ICMP packets.
It adds some security against spoofed ICMP packets
disrupting GTSM protected sessions.

Signed-off-by: Stephen Hemminger <shemminger@vyatta.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

diff --git a/net/ipv4/tcp_ipv4.c b/net/ipv4/tcp_ipv4.c
index 70df409..f4df5f9 100644
--- a/net/ipv4/tcp_ipv4.c
+++ b/net/ipv4/tcp_ipv4.c

@@ -370,6 +370,11 @@
 	if (sk->sk_state == TCP_CLOSE)
 		goto out;
 
+	if (unlikely(iph->ttl < inet_sk(sk)->min_ttl)) {
+		NET_INC_STATS_BH(net, LINUX_MIB_TCPMINTTLDROP);
+		goto out;
+	}
+
 	icsk = inet_csk(sk);
 	tp = tcp_sk(sk);
 	seq = ntohl(th->seq);