[LTP] cve: icmp_rate_limit: set icmp_msgs_burst within network namespace
linuxtestproject.agent@gmail.com
linuxtestproject.agent@gmail.com
Thu Apr 23 04:37:53 CEST 2026
Hi Wei,
On 2026-04-23, Wei Gao wrote:
> cve: icmp_rate_limit: set icmp_msgs_burst within network namespace
> childns = SAFE_OPEN("/proc/self/ns/net", O_RDONLY);
>
> + SAFE_FILE_PRINTF("/proc/sys/net/ipv4/icmp_msgs_burst", "50");
Correct fix. The save_restore entry was writing to the initial namespace
before CLONE_NEWNET, making it ineffective inside the child namespace where
the test actually runs.
> - {"/proc/sys/net/ipv4/icmp_msgs_burst", "50", TST_SR_TBROK},
No explicit restore needed — the sysctl lives in the child namespace, which
is destroyed when the test exits.
Reviewed-by: LTP AI Reviewer <ltp-ai@noreply.github.com>
---
Note:
Our agent completed the review of the patch.
The agent can sometimes produce false positives although often its
findings are genuine. If you find issues with the review, please
comment this email or ignore the suggestions.
Regards,
LTP AI Reviewer
More information about the ltp
mailing list