Page MenuHomeFreeBSD
Files F151147951

D22462.id65316.diff
No OneTemporary
Actions

D22462.id65316.diff
View Options

Index: head/sys/netinet6/ip6_input.c
===================================================================
--- head/sys/netinet6/ip6_input.c
+++ head/sys/netinet6/ip6_input.c
@@ -897,24 +897,6 @@
return;
}
- ip6 = mtod(m, struct ip6_hdr *);
-
- /*
- * Malicious party may be able to use IPv4 mapped addr to confuse
- * tcp/udp stack and bypass security checks (act as if it was from
- * 127.0.0.1 by using IPv6 src ::ffff:127.0.0.1). Be cautious.
- *
- * For SIIT end node behavior, you may want to disable the check.
- * However, you will become vulnerable to attacks using IPv4 mapped
- * source.
- */
- if (IN6_IS_ADDR_V4MAPPED(&ip6->ip6_src) ||
- IN6_IS_ADDR_V4MAPPED(&ip6->ip6_dst)) {
- IP6STAT_INC(ip6s_badscope);
- in6_ifstat_inc(rcvif, ifs6_in_addrerr);
- goto bad;
- }
-
/*
* Tell launch routine the next header
*/

File Metadata

Mime Type
text/plain
Expires
Tue, Apr 7, 10:21 AM (18 h, 39 m)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
31025453
Default Alt Text
D22462.id65316.diff (854 B)

Event Timeline