lordwelch/router7
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

radvd: ignore requests from other interfaces than the configured one

Browse Source 
Announcing networks into uplinks is never a good idea 🙈
This commit is contained in:
Michael Stapelberg 2022-06-08 17:42:55 +02:00
parent f4dd972e54
commit 225c8e6abd
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
internal/radvd/radvd.go
View File

@ -19,6 +19,7 @@ import (
"log" "log"
"net" "net"
"net/netip" "net/netip"
"strings"
"sync" "sync"
"time" "time"
@ -93,6 +94,10 @@ func (s *Server) Serve(ifname string, conn net.PacketConn) error {
if err != nil { if err != nil {
return err return err
} }
if !strings.HasSuffix(addr.String(), "%"+ifname) {
log.Printf("ignoring off-interface request from %v", addr)
continue
}
// TODO: isnt this guaranteed by the filter above? // TODO: isnt this guaranteed by the filter above?
if n == 0 || if n == 0 ||
ipv6.ICMPType(buf[0]) != ipv6.ICMPTypeRouterSolicitation { ipv6.ICMPType(buf[0]) != ipv6.ICMPTypeRouterSolicitation {