diff options
Diffstat (limited to 'net/ipv6')
| -rw-r--r-- | net/ipv6/ip6_input.c | 10 | ||||
| -rw-r--r-- | net/ipv6/tcp_ipv6.c | 5 | 
2 files changed, 5 insertions, 10 deletions
| diff --git a/net/ipv6/ip6_input.c b/net/ipv6/ip6_input.c index c83c0faf5ae9..9075acf081dd 100644 --- a/net/ipv6/ip6_input.c +++ b/net/ipv6/ip6_input.c @@ -151,16 +151,6 @@ int ipv6_rcv(struct sk_buff *skb, struct net_device *dev, struct packet_type *pt  	if (ipv6_addr_is_multicast(&hdr->saddr))  		goto err; -	/* While RFC4291 is not explicit about v4mapped addresses -	 * in IPv6 headers, it seems clear linux dual-stack -	 * model can not deal properly with these. -	 * Security models could be fooled by ::ffff:127.0.0.1 for example. -	 * -	 * https://tools.ietf.org/html/draft-itojun-v6ops-v4mapped-harmful-02 -	 */ -	if (ipv6_addr_v4mapped(&hdr->saddr)) -		goto err; -  	skb->transport_header = skb->network_header + sizeof(*hdr);  	IP6CB(skb)->nhoff = offsetof(struct ipv6hdr, nexthdr); diff --git a/net/ipv6/tcp_ipv6.c b/net/ipv6/tcp_ipv6.c index b4ffcec732b4..53e15514d90d 100644 --- a/net/ipv6/tcp_ipv6.c +++ b/net/ipv6/tcp_ipv6.c @@ -978,6 +978,11 @@ static int tcp_v6_conn_request(struct sock *sk, struct sk_buff *skb)  	if (!ipv6_unicast_destination(skb))  		goto drop; +	if (ipv6_addr_v4mapped(&ipv6_hdr(skb)->saddr)) { +		IP6_INC_STATS_BH(sock_net(sk), NULL, IPSTATS_MIB_INHDRERRORS); +		return 0; +	} +  	return tcp_conn_request(&tcp6_request_sock_ops,  				&tcp_request_sock_ipv6_ops, sk, skb); | 
