[INET]: local port range robustness Expansion of original idea from Denis V. Lunev <den@openvz.org> Add robustness and locking to the local_port_range sysctl. 1. Enforce that low < high when setting. 2. Use seqlock to ensure atomic update. The locking might seem like overkill, but there are cases where sysadmin might want to change value in the middle of a DoS attack. Signed-off-by: Stephen Hemminger <shemminger@linux-foundation.org> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: 227b60f5102cda4e4ab792b526a59c8cb20cd9f8 [log] [tgz]
author: Stephen Hemminger <shemminger@linux-foundation.org> Wed Oct 10 17:30:46 2007 -0700
committer: David S. Miller <davem@davemloft.net> Wed Oct 10 17:30:46 2007 -0700
tree: 2c9e372601ba794894833b0618bc531a9f5d57c4
parent: 06393009000779b00a558fd2f280882cc7dc2008 [diff] [blame]
diff --git a/net/sctp/socket.c b/net/sctp/socket.c
index 7cd58ef..9c6a4b5 100644
--- a/net/sctp/socket.c
+++ b/net/sctp/socket.c

@@ -5315,11 +5315,12 @@
 
 	if (snum == 0) {
 		/* Search for an available port. */
-		unsigned int low = sysctl_local_port_range[0];
-		unsigned int high = sysctl_local_port_range[1];
-		unsigned int remaining = (high - low) + 1;
-		unsigned int rover = net_random() % remaining + low;
-		int index;
+		int low, high, remaining, index;
+		unsigned int rover;
+
+		inet_get_local_port_range(&low, &high);
+		remaining = (high - low) + 1;
+		rover = net_random() % remaining + low;
 
 		do {
 			rover++;
commit	227b60f5102cda4e4ab792b526a59c8cb20cd9f8	[log] [tgz]
author	Stephen Hemminger <shemminger@linux-foundation.org>	Wed Oct 10 17:30:46 2007 -0700
committer	David S. Miller <davem@davemloft.net>	Wed Oct 10 17:30:46 2007 -0700
tree	2c9e372601ba794894833b0618bc531a9f5d57c4
parent	06393009000779b00a558fd2f280882cc7dc2008 [diff] [blame]