git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Matteo Croce <mcroce@redhat.com>
	Mon, 1 Jul 2019 17:01:55 +0000 (19:01 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sun, 28 Jul 2019 06:28:24 +0000 (08:28 +0200)
commit	7719f7253677b5a9a3db8b95d2861d32081cfca0
tree	9bd3dade9238f739f243924e90458db255efa68b	tree \| snapshot
parent	ce6994f56e7a6e1ac0630328e65fa2d9d919786d	commit \| diff

ipv4: don't set IPv6 only flags to IPv4 addresses

[ Upstream commit 2e60546368165c2449564d71f6005dda9205b5fb ]

Avoid the situation where an IPV6 only flag is applied to an IPv4 address:

    # ip addr add 192.0.2.1/24 dev dummy0 nodad home mngtmpaddr noprefixroute
    # ip -4 addr show dev dummy0
    2: dummy0: <BROADCAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000
        inet 192.0.2.1/24 scope global noprefixroute dummy0
           valid_lft forever preferred_lft forever

Or worse, by sending a malicious netlink command:

    # ip -4 addr show dev dummy0
    2: dummy0: <BROADCAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000
        inet 192.0.2.1/24 scope global nodad optimistic dadfailed home tentative mngtmpaddr noprefixroute stable-privacy dummy0
           valid_lft forever preferred_lft forever

Signed-off-by: Matteo Croce <mcroce@redhat.com>
Reviewed-by: David Ahern <dsahern@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>