[INET]: local port range robustness

Expansion of original idea from Denis V. Lunev <den@openvz.org> Add robustness and locking to the local_port_range sysctl. 1. Enforce that low < high when setting. 2. Use seqlock to ensure atomic update. The locking might seem like overkill, but there are cases where sysadmin might want to change value in the middle of a DoS attack. Signed-off-by: Stephen Hemminger <shemminger@linux-foundation.org> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Stephen Hemminger <shemminger@linux-foundation.org> 2007-10-10 20:30:46 -0400
committer: David S. Miller <davem@davemloft.net> 2007-10-10 20:30:46 -0400
commit: 227b60f5102cda4e4ab792b526a59c8cb20cd9f8 (patch)
tree: 2c9e372601ba794894833b0618bc531a9f5d57c4 /net/ipv4/udp.c
parent: 06393009000779b00a558fd2f280882cc7dc2008 (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/net/ipv4/udp.c b/net/ipv4/udp.c
index ef4d901ee9ad..cb9fc58efb2f 100644
--- a/net/ipv4/udp.c
+++ b/net/ipv4/udp.c
@@ -147,11 +147,11 @@ int __udp_lib_get_port(struct sock *sk, unsigned short snum,
        write_lock_bh(&udp_hash_lock);
        if (!snum) {
-                int i;
+                int i, low, high;
-                int low = sysctl_local_port_range[0];
-                int high = sysctl_local_port_range[1];
                unsigned rover, best, best_size_so_far;
+                inet_get_local_port_range(&low, &high);
                best_size_so_far = UINT_MAX;
                best = rover = net_random() % (high - low) + low;
author	Stephen Hemminger <shemminger@linux-foundation.org>	2007-10-10 20:30:46 -0400
committer	David S. Miller <davem@davemloft.net>	2007-10-10 20:30:46 -0400
commit	227b60f5102cda4e4ab792b526a59c8cb20cd9f8 (patch)
tree	2c9e372601ba794894833b0618bc531a9f5d57c4 /net/ipv4/udp.c
parent	06393009000779b00a558fd2f280882cc7dc2008 (diff)