SCTP: Allow ADD_IP to work with AUTH for backward compatibility.

This patch adds a tunable that will allow ADD_IP to work without AUTH for backward compatibility. The default value is off since the default value for ADD_IP is off as well. People who need to use ADD-IP with older implementations take risks of connection hijacking and should consider upgrading or turning this tunable on. Signed-off-by: Vlad Yasevich <vladislav.yasevich@hp.com>
author: Vlad Yasevich <vladislav.yasevich@hp.com> 2007-10-24 17:24:26 -0400
committer: Vlad Yasevich <vladislav.yasevich@hp.com> 2007-11-07 11:39:27 -0500
commit: 73d9c4fd1a6ec4950b2eac8135d35506bf400d6c (patch)
tree: b2d6fe707cdc790c9b42a2487d2892e97c6561ba /net/sctp/sysctl.c
parent: SCTP: Correctly disable ADD-IP when AUTH is not supported. (diff)
download: linux-dev-73d9c4fd1a6ec4950b2eac8135d35506bf400d6c.tar.xz
linux-dev-73d9c4fd1a6ec4950b2eac8135d35506bf400d6c.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/net/sctp/sysctl.c b/net/sctp/sysctl.c
index 0669778e4335..da4f15734fb1 100644
--- a/net/sctp/sysctl.c
+++ b/net/sctp/sysctl.c
@@ -263,6 +263,15 @@ static ctl_table sctp_table[] = {
 		.proc_handler	= &proc_dointvec,
 		.strategy	= &sysctl_intvec
 	},
+	{
+		.ctl_name	= CTL_UNNUMBERED,
+		.procname	= "addip_noauth_enable",
+		.data		= &sctp_addip_noauth,
+		.maxlen		= sizeof(int),
+		.mode		= 0644,
+		.proc_handler	= &proc_dointvec,
+		.strategy	= &sysctl_intvec
+	},
 	{ .ctl_name = 0 }
 };
author	Vlad Yasevich <vladislav.yasevich@hp.com>	2007-10-24 17:24:26 -0400
committer	Vlad Yasevich <vladislav.yasevich@hp.com>	2007-11-07 11:39:27 -0500
commit	73d9c4fd1a6ec4950b2eac8135d35506bf400d6c (patch)
tree	b2d6fe707cdc790c9b42a2487d2892e97c6561ba /net/sctp/sysctl.c
parent	SCTP: Correctly disable ADD-IP when AUTH is not supported. (diff)
download	linux-dev-73d9c4fd1a6ec4950b2eac8135d35506bf400d6c.tar.xz linux-dev-73d9c4fd1a6ec4950b2eac8135d35506bf400d6c.zip