Comment 3 for bug 2053113
Revision history for this message
| Seth Arnold (seth-arnold) wrote Re: DoS vulnerability transmitting BFD packets from VIF | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
I notice that the patch modifies some tests:
- test "$bfd_cfg" = "enable=true min_rx=2000"
+ test "$bfd_cfg" = "check_tnl_key=true enable=true min_rx=2000"
- test "$bfd_cfg" = "enable=true min_rx=2000 min_tx=1500"
+ test "$bfd_cfg" = "check_tnl_key=true enable=true min_rx=2000 min_tx=1500"
- test "$bfd_cfg" = "enable=true min_tx=1500 mult=15"
+ test "$bfd_cfg" = "check_tnl_key=true enable=true min_tx=1500 mult=15"
If check_tnl_key=true is the default, these do not need to changed, right? Do we need to check the check_tnl_key=false configuration options? Would we want to make sure that in that case the routing control packets can be injected?
Thanks