lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Tue, 26 Mar 2013 14:19:54 +0800 From: Jason Wang <jasowang@...hat.com> To: davem@...emloft.net, netdev@...r.kernel.org, linux-kernel@...r.kernel.org Cc: mst@...hat.com, Jason Wang <jasowang@...hat.com> Subject: [net-next 0/5] set transport header for untrusted packets We don't set transport header for untrusted packets in the past, but for the follwoing reasons, we need to do it now. - Better packet length estimation (introduced in 1def9238) needs l4 header for gso packets to compute the header length. - Some driver needs l4 header (e.g. ixgbe needs tcp header to do atr). So this patches tries to set transport header for packets from untrusted source (netback, packet, tuntap, macvtap). Plus a fix for better estimation on packet length for DODGY packet. Tested on tun/macvtap/packet, compile test on netback. Jason Wang (5): macvtap: set transport header before passing skb to lower device tuntap: set transport header before passing it to kernel packet: set transport header before doing xmit netback: set transport header before passing it to kernel net_sched: better precise estimation on packet length for untrusted packets drivers/net/macvtap.c | 9 +++++++++ drivers/net/tun.c | 10 ++++++++++ drivers/net/xen-netback/netback.c | 12 ++++++++++++ net/core/dev.c | 8 +++++++- net/packet/af_packet.c | 21 +++++++++++++++++++++ 5 files changed, 59 insertions(+), 1 deletions(-) -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists