review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Florian Westphal <fw@strlen.de>
	Fri, 24 Sep 2021 00:04:11 +0000 (17:04 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Wed, 6 Oct 2021 13:55:52 +0000 (15:55 +0200)
commit	560271d09f780726f52f65cb6f19f0e95084abdc
tree	8c2ee2073500fe2e8efb13c8badd53b0f3b478ae	tree \| snapshot
parent	9c6591ae8e63f93c895ad5e2703c36c548aac997	commit \| diff

mptcp: don't return sockets in foreign netns

[ Upstream commit ea1300b9df7c8e8b65695a08b8f6aaf4b25fec9c ]

mptcp_token_get_sock() may return a mptcp socket that is in
a different net namespace than the socket that received the token value.

The mptcp syncookie code path had an explicit check for this,
this moves the test into mptcp_token_get_sock() function.

Eventually token.c should be converted to pernet storage, but
such change is not suitable for net tree.

Fixes: 2c5ebd001d4f0 ("mptcp: refactor token container")
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Mat Martineau <mathew.j.martineau@linux.intel.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Sasha Levin <sashal@kernel.org>

net/mptcp/mptcp_diag.c		diff \| blob \| history
net/mptcp/protocol.h		diff \| blob \| history
net/mptcp/subflow.c		diff \| blob \| history
net/mptcp/syncookies.c		diff \| blob \| history
net/mptcp/token.c		diff \| blob \| history
net/mptcp/token_test.c		diff \| blob \| history