projects / wrapfs-5.3.y.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8180611) | patch
mptcp: don't return sockets in foreign netns
authorFlorian Westphal <fw@strlen.de>
Fri, 24 Sep 2021 00:04:11 +0000 (17:04 -0700)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Thu, 7 Oct 2021 05:53:11 +0000 (07:53 +0200)
commit385cf9ac00c2cd4c869253bc9f33836752a249c7
tree6a0703c1e074901a6096177bc3f69b8dbadc6366tree | snapshot
parent8180611c238e11676612eb2a9828b1c7a3a4d77bcommit | diff
mptcp: don't return sockets in foreign netns

[ Upstream commit ea1300b9df7c8e8b65695a08b8f6aaf4b25fec9c ]

mptcp_token_get_sock() may return a mptcp socket that is in
a different net namespace than the socket that received the token value.

The mptcp syncookie code path had an explicit check for this,
this moves the test into mptcp_token_get_sock() function.

Eventually token.c should be converted to pernet storage, but
such change is not suitable for net tree.

Fixes: 2c5ebd001d4f0 ("mptcp: refactor token container")
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Mat Martineau <mathew.j.martineau@linux.intel.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Sasha Levin <sashal@kernel.org>
net/mptcp/mptcp_diag.c diff | blob | history
net/mptcp/protocol.h diff | blob | history
net/mptcp/subflow.c diff | blob | history
net/mptcp/syncookies.c diff | blob | history
net/mptcp/token.c diff | blob | history
net/mptcp/token_test.c diff | blob | history
wrapfs-5.3.y