Google Git
Sign in
android / platform / external / android-clat / 4f3d786
commit4f3d78640de4573ced186edd3a09b1247d981edf[log] [tgz]
authorLorenzo Colitti <lorenzo@google.com>Fri Feb 01 13:18:35 2013 +0900
committerLorenzo Colitti <lorenzo@google.com>Fri Feb 22 18:56:10 2013 +0900
treeacd4f84b14a34a44ac4faf6a9fb2f782eb2f7f79
parent70aba57df0f4a0ee800e7ba3694dbd9b6302a470 [diff]
Ensure netlink messages come from the kernel.

Currently clatd accepts all netlink messages without validating
that they come from the kernel. This could allow another app to
spoof these messages. Fix this by connecting the socket to the
kernel so that no other process can send it messages.

Bug: 7664960
Change-Id: I994641ea13cfd07fb25ccf52fcbbf5d1c9633ec4
2 files changed
tree: acd4f84b14a34a44ac4faf6a9fb2f782eb2f7f79
  1. Android.mk
  2. BUGS
  3. checksum.c
  4. checksum.h
  5. clatd.c
  6. clatd.conf
  7. clatd.h
  8. config.c
  9. config.h
  10. debug.h
  11. dns64.c
  12. dns64.h
  13. dump.c
  14. dump.h
  15. getaddr.c
  16. getaddr.h
  17. getroute.c
  18. getroute.h
  19. ipv4.c
  20. ipv4.h
  21. ipv6.c
  22. ipv6.h
  23. LICENSE
  24. logging.c
  25. logging.h
  26. MODULE_LICENSE_APACHE2
  27. mtu.c
  28. mtu.h
  29. netlink_callbacks.c
  30. netlink_callbacks.h
  31. netlink_msg.c
  32. netlink_msg.h
  33. NOTICE
  34. setif.c
  35. setif.h
  36. setroute.c
  37. setroute.h
  38. translate.c
  39. translate.h