| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20120806.134737.1358773847818872075.davem@davemloft.net> Date: Mon, 06 Aug 2012 13:47:37 -0700 (PDT) From: David Miller <davem@...emloft.net> To: ebiederm@...ssion.com Cc: vyasevich@...il.com, jan.ariyasu@...il.com, linux-sctp@...r.kernel.org, netdev@...r.kernel.org, linux-kernel@...r.kernel.org, jan.ariyasu@...com Subject: Re: [PATCH 00/13] SCTP: Enable netns From: ebiederm@...ssion.com (Eric W. Biederman) Date: Mon, 06 Aug 2012 12:50:46 -0700 > Vlad Yasevich <vyasevich@...il.com> writes: > > >> Hi Eric >> >> Associations are looked up by ports, but then verifyed by addresses. >> Also, associations belong to sockets and simply validating the socket >> namespace should be sufficient. > > True. Your set of patches isn't quite as likely to malfunction as it > looked at first glance. It requires address reuse which happens accross > namespaces but not too frequently. > > As for validating the socket namespace I agree that is the fix and my > patchset winds up doing it. FWIW I much prefer Eric's patch set, it was so significantly easier to read and validate than Jan's. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists