| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <51C94D23.6020006@redhat.com> Date: Tue, 25 Jun 2013 09:56:19 +0200 From: Daniel Borkmann <dborkman@...hat.com> To: netdev@...r.kernel.org CC: Hannes Frederic Sowa <hannes@...essinduktion.org> Subject: Re: [PATCH net-next] ipv6: remove old token ipv6 address as soon as possible On 06/24/2013 10:03 PM, Hannes Frederic Sowa wrote: > If the tokenized ip address is re-set on an interface we depend on the > arrival of a new router advertisment to call addrconf_verify to clean > up the old address (which valid_lft is now set to 0). Old addresses can > linger around for a longer time if e.g. the source of router advertisments > vanishes. > > So, call addrconf_verify immediately after setting the new tokenized > address to get rid of the old tokenized addresses. > > Cc: Daniel Borkmann <dborkman@...hat.com> > Signed-off-by: Hannes Frederic Sowa <hannes@...essinduktion.org> Agreed. This is also done when simply adding or modifying an address, so this would be good for tokenized addresses, too. I've tested it also and it looks good. Thanks Hannes ! Acked-by: Daniel Borkmann <dborkman@...hat.com> -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists