diff options
| author | Vlad Yasevich <vladislav.yasevich@hp.com> | 2007-10-24 17:24:26 -0400 |
|---|---|---|
| committer | Vlad Yasevich <vladislav.yasevich@hp.com> | 2007-11-07 11:39:27 -0500 |
| commit | 73d9c4fd1a6ec4950b2eac8135d35506bf400d6c (patch) | |
| tree | b2d6fe707cdc790c9b42a2487d2892e97c6561ba /net/sctp/sysctl.c | |
| parent | 88799fe5ec65fad1d5cb1d4dc5d8f78edb949f1c (diff) | |
SCTP: Allow ADD_IP to work with AUTH for backward compatibility.
This patch adds a tunable that will allow ADD_IP to work without
AUTH for backward compatibility. The default value is off since
the default value for ADD_IP is off as well. People who need
to use ADD-IP with older implementations take risks of connection
hijacking and should consider upgrading or turning this tunable on.
Signed-off-by: Vlad Yasevich <vladislav.yasevich@hp.com>
Diffstat (limited to 'net/sctp/sysctl.c')
| -rw-r--r-- | net/sctp/sysctl.c | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/net/sctp/sysctl.c b/net/sctp/sysctl.c index 0669778e4335..da4f15734fb1 100644 --- a/net/sctp/sysctl.c +++ b/net/sctp/sysctl.c | |||
| @@ -263,6 +263,15 @@ static ctl_table sctp_table[] = { | |||
| 263 | .proc_handler = &proc_dointvec, | 263 | .proc_handler = &proc_dointvec, |
| 264 | .strategy = &sysctl_intvec | 264 | .strategy = &sysctl_intvec |
| 265 | }, | 265 | }, |
| 266 | { | ||
| 267 | .ctl_name = CTL_UNNUMBERED, | ||
| 268 | .procname = "addip_noauth_enable", | ||
| 269 | .data = &sctp_addip_noauth, | ||
| 270 | .maxlen = sizeof(int), | ||
| 271 | .mode = 0644, | ||
| 272 | .proc_handler = &proc_dointvec, | ||
| 273 | .strategy = &sysctl_intvec | ||
| 274 | }, | ||
| 266 | { .ctl_name = 0 } | 275 | { .ctl_name = 0 } |
| 267 | }; | 276 | }; |
| 268 | 277 | ||