Hi Dave,
the second part of my patchset contains fixes to the use of addresses in
neigbor discovery.
RFC 2461 requires that the source address of Neighbor Discovery messages
is an address assigned to the sending interface.
Duplicate Address Detection should also be interface specific. We don't,
for exaple, want a node to DoS itself just because it has two interfaces
on the same link and both happen to listen to the same multicast group. If
there is a true duplicate on the link, the interface doing DAD will notice
it anyway.
The attached patch adds a "strict" parameter to ip6_chk_addr() and
ip6_get_ifaddr() to allow link-local protocols like ND and DAD to do
strict address checks even on addresses with greater scope than
link-local.
Thanks,
Ville
--
Ville Nuorvala
Research Assistant, Institute of Digital Communications,
Helsinki University of Technology
email: vnuorval@xxxxxxxxxx, phone: +358 (0)9 451 5257
ndisc_strict_addr_chk.patch
Description: Text document
|