ipv6: make fragment identifications less predictable [ Backport of upstream commit 87c48fa3b4630905f98268dde838ee43626a060c ] Fernando Gont reported current IPv6 fragment identification generation was not secure, because using a very predictable system-wide generator, allowing various attacks. IPv4 uses inetpeer cache to address this problem and to get good performance. We'll use this mechanism when IPv6 inetpeer is stable enough in linux-3.1 For the time being, we use jhash on destination address to provide less predictable identifications. Also remove a spinlock and use cmpxchg() to get better SMP performance. Reported-by: Fernando Gont <fernando@gont.com.ar> Signed-off-by: Eric Dumazet <eric.dumazet@gmail.com> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>

commit: ef81bb40bf15f350fe865f31fa42f1082772a576 [log] [tgz]
author: Eric Dumazet <eric.dumazet@gmail.com> Mon Aug 08 23:44:00 2011 -0700
committer: Greg Kroah-Hartman <gregkh@suse.de> Mon Aug 15 18:31:37 2011 -0700
tree: f89c3e9616127d234207a84e108bf147cc393215
parent: eb473dd5ad8785d35142966cdcd6896d8dff5a22 [diff] [blame]
diff --git a/net/ipv6/udp.c b/net/ipv6/udp.c
index 328985c..29213b5 100644
--- a/net/ipv6/udp.c
+++ b/net/ipv6/udp.c

@@ -1359,7 +1359,7 @@
 	fptr = (struct frag_hdr *)(skb_network_header(skb) + unfrag_ip6hlen);
 	fptr->nexthdr = nexthdr;
 	fptr->reserved = 0;
-	ipv6_select_ident(fptr);
+	ipv6_select_ident(fptr, (struct rt6_info *)skb_dst(skb));
 
 	/* Fragment the skb. ipv6 header and the remaining fields of the
 	 * fragment header are updated in ipv6_gso_segment()
commit	ef81bb40bf15f350fe865f31fa42f1082772a576	[log] [tgz]
author	Eric Dumazet <eric.dumazet@gmail.com>	Mon Aug 08 23:44:00 2011 -0700
committer	Greg Kroah-Hartman <gregkh@suse.de>	Mon Aug 15 18:31:37 2011 -0700
tree	f89c3e9616127d234207a84e108bf147cc393215
parent	eb473dd5ad8785d35142966cdcd6896d8dff5a22 [diff] [blame]