sctp: fix to check the source address of COOKIE-ECHO chunk SCTP does not check whether the source address of COOKIE-ECHO chunk is the original address of INIT chunk or part of the any address parameters saved in COOKIE in CLOSED state. So even if the COOKIE-ECHO chunk is from any address but with correct COOKIE, the COOKIE-ECHO chunk still be accepted. If the COOKIE is not from a valid address, the assoc should not be established. Signed-off-by: Wei Yongjun <yjwei@cn.fujitsu.com> Signed-off-by: Vlad Yasevich <vladislav.yasevich@hp.com> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: de6becdc0844ff92b38ffd9f0c4db1d3de02835f [log] [tgz]
author: Wei Yongjun <yjwei@cn.fujitsu.com> Tue Apr 19 21:30:51 2011 +0000
committer: David S. Miller <davem@davemloft.net> Wed Apr 20 01:51:05 2011 -0700
tree: f52df91a347ece7e4efc09ca2974e8e38f38a3f8
parent: 85c5ed4e44a262344ce43b4bf23204107923ca95 [diff] [blame]
diff --git a/net/sctp/sm_sideeffect.c b/net/sctp/sm_sideeffect.c
index 3b80fe2..d612ca1 100644
--- a/net/sctp/sm_sideeffect.c
+++ b/net/sctp/sm_sideeffect.c

@@ -595,8 +595,7 @@
 	 * fail during INIT processing (due to malloc problems),
 	 * just return the error and stop processing the stack.
 	 */
-	if (!sctp_process_init(asoc, chunk->chunk_hdr->type,
-			       sctp_source(chunk), peer_init, gfp))
+	if (!sctp_process_init(asoc, chunk, sctp_source(chunk), peer_init, gfp))
 		error = -ENOMEM;
 	else
 		error = 0;
commit	de6becdc0844ff92b38ffd9f0c4db1d3de02835f	[log] [tgz]
author	Wei Yongjun <yjwei@cn.fujitsu.com>	Tue Apr 19 21:30:51 2011 +0000
committer	David S. Miller <davem@davemloft.net>	Wed Apr 20 01:51:05 2011 -0700
tree	f52df91a347ece7e4efc09ca2974e8e38f38a3f8
parent	85c5ed4e44a262344ce43b4bf23204107923ca95 [diff] [blame]