Re: Do you know the TCP stack? (127.x.x.x routing)
From: Eran Mann
Date: Mon Mar 07 2005 - 03:08:05 EST
Zdenek Radouch wrote:
I think what Andi Kleen was talking about below is something like the
attached 5 minutes patch (applies cleanly to 2.4.2x kernels I have at
hand, and to 2.6.11 with minor offset). Please donate the 5 minute wages
to the OSDL or the FSF at your choice ;-)
2) If it does require kernel hacking, would you like to do it for me?
(as I had said, as a contract)
Not accepting packets with with a loopback address is one
thing, not accepting any 127.0.0.0/8 packets is entirely something else.
Yes, however it seems to be required by the RFC (quoting RFC 3330
"special use IPv4 addresses") :
" 127.0.0.0/8 - This block is assigned for use as the Internet host
loopback address. A datagram sent by a higher level protocol to an
address anywhere within this block should loop back inside the host.
This is ordinarily implemented using only 127.0.0.1/32 for loopback,
but no addresses within this block should ever appear on any network
anywhere [RFC1700, page 5]. "
* Andi Kleen <m1y8d0mss2.fsf@xxxxxx> 2005-03-06 21:19
It is. 127.* is hardcoded in the routing engine and e.g.
it won't accept outside packets with a loopback address.
Most likely it's enough to change the "LOOPBACK" macro to allow
parts of the Class A to be used for other purposes.
--- 2.4.27/include/linux/in.h 2004-05-28 17:15:37.000000000 +0300
+++ 2.4.27.hacked/include/linux/in.h 2005-03-07 09:53:02.000000000 +0200
@@ -226,7 +226,7 @@
/* Address to loopback in software to local host. */
#define INADDR_LOOPBACK 0x7f000001 /* 127.0.0.1 */
-#define IN_LOOPBACK(a) ((((long int) (a)) & 0xff000000) == 0x7f000000)
+#define IN_LOOPBACK(a) ((((long int) (a)) & 0xffff0000) == 0x7f000000)
/* Defines for Multicast INADDR */
#define INADDR_UNSPEC_GROUP 0xe0000000U /* 18.104.22.168 */
@@ -240,7 +240,7 @@
/* Some random defines to make it easier in the kernel.. */
-#define LOOPBACK(x) (((x) & htonl(0xff000000)) == htonl(0x7f000000))
+#define LOOPBACK(x) (((x) & htonl(0xffff0000)) == htonl(0x7f000000))
#define MULTICAST(x) (((x) & htonl(0xf0000000)) == htonl(0xe0000000))
#define BADCLASS(x) (((x) & htonl(0xf0000000)) == htonl(0xf0000000))
#define ZERONET(x) (((x) & htonl(0xff000000)) == htonl(0x00000000))