diff options
author | Eric Dumazet <eric.dumazet@gmail.com> | 2011-10-24 09:06:21 +0200 |
---|---|---|
committer | David S. Miller <davem@davemloft.net> | 2011-10-24 09:06:21 +0200 |
commit | 66b13d99d96a1a69f47a6bc3dc47f45955967377 (patch) | |
tree | c566bee026b5e9703f789d27657aefa7c70c587c /security | |
parent | tcp: md5: add more const attributes (diff) | |
download | linux-66b13d99d96a1a69f47a6bc3dc47f45955967377.tar.xz linux-66b13d99d96a1a69f47a6bc3dc47f45955967377.zip |
ipv4: tcp: fix TOS value in ACK messages sent from TIME_WAIT
There is a long standing bug in linux tcp stack, about ACK messages sent
on behalf of TIME_WAIT sockets.
In the IP header of the ACK message, we choose to reflect TOS field of
incoming message, and this might break some setups.
Example of things that were broken :
- Routing using TOS as a selector
- Firewalls
- Trafic classification / shaping
We now remember in timewait structure the inet tos field and use it in
ACK generation, and route lookup.
Notes :
- We still reflect incoming TOS in RST messages.
- We could extend MuraliRaja Muniraju patch to report TOS value in
netlink messages for TIME_WAIT sockets.
- A patch is needed for IPv6
Signed-off-by: Eric Dumazet <eric.dumazet@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'security')
0 files changed, 0 insertions, 0 deletions