1. 24 8月, 2005 8 次提交
    • T
      [PKT_SCHED]: Fix missing qdisc_destroy() in qdisc_create_dflt() · 0fbbeb1b
      Thomas Graf 提交于
      qdisc_create_dflt() is missing to destroy the newly allocated
      default qdisc if the initialization fails resulting in leaks
      of all kinds. The only caller in mainline which may trigger
      this bug is sch_tbf.c in tbf_create_dflt_qdisc().
      
      Note: qdisc_create_dflt() doesn't fulfill the official locking
            requirements of qdisc_destroy() but since the qdisc could
            never be seen by the outside world this doesn't matter
            and it can stay as-is until the locking of pkt_sched
            is cleaned up.
      Signed-off-by: NThomas Graf <tgraf@suug.ch>
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      0fbbeb1b
    • V
      [SCTP]: Add SENTINEL to SCTP MIB stats · d2287f84
      Vlad Yasevich 提交于
      Add SNMP_MIB_SENTINEL to the definition of the sctp_snmp_list so that
      the output routine in proc correctly terminates.  This was causing some
      problems running on ia64 systems.
      Signed-off-by: NVlad Yasevich <vladislav.yasevich@hp.com>
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      d2287f84
    • R
      [AX25]: UID fixes · 01d7dd0e
      Ralf Baechle 提交于
       o Brown paperbag bug - ax25_findbyuid() was always returning a NULL pointer
         as the result.  Breaks ROSE completly and AX.25 if UID policy set to deny.
      
       o While the list structure of AX.25's UID to callsign mapping table was
         properly protected by a spinlock, it's elements were not refcounted
         resulting in a race between removal and usage of an element.
      Signed-off-by: NRalf Baechle DL5RB <ralf@linux-mips.org>
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      01d7dd0e
    • R
      [NET]: Fix socket bitop damage · 53b924b3
      Ralf Baechle 提交于
      The socket flag cleanups that went into 2.6.12-rc1 are basically oring
      the flags of an old socket into the socket just being created.
      Unfortunately that one was just initialized by sock_init_data(), so already
      has SOCK_ZAPPED set.  As the result zapped sockets are created and all
      incoming connection will fail due to this bug which again was carefully
      replicated to at least AX.25, NET/ROM or ROSE.
      
      In order to keep the abstraction alive I've introduced sock_copy_flags()
      to copy the socket flags from one sockets to another and used that
      instead of the bitwise copy thing.  Anyway, the idea here has probably
      been to copy all flags, so sock_copy_flags() should be the right thing.
      With this the ham radio protocols are usable again, so I hope this will
      make it into 2.6.13.
      Signed-off-by: NRalf Baechle DL5RB <ralf@linux-mips.org>
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      53b924b3
    • P
      [NETFILTER]: Fix HW checksum handling in ip_queue/ip6_queue · 66a79a19
      Patrick McHardy 提交于
      The checksum needs to be filled in on output, after mangling a packet
      ip_summed needs to be reset.
      Signed-off-by: NPatrick McHardy <kaber@trash.net>
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      66a79a19
    • D
      [IPV4]: Fix negative timer loop with lots of ipv4 peers. · 1344a416
      Dave Johnson 提交于
      From: Dave Johnson <djohnson+linux-kernel@sw.starentnetworks.com>
      
      Found this bug while doing some scaling testing that created 500K inet
      peers.
      
      peer_check_expire() in net/ipv4/inetpeer.c isn't using inet_peer_gc_mintime
      correctly and will end up creating an expire timer with less than the
      minimum duration, and even zero/negative if enough active peers are
      present.
      
      If >65K peers, the timer will be less than inet_peer_gc_mintime, and with
      >70K peers, the timer duration will reach zero and go negative.
      
      The timer handler will continue to schedule another zero/negative timer in
      a loop until peers can be aged.  This can continue for at least a few
      minutes or even longer if the peers remain active due to arriving packets
      while the loop is occurring.
      
      Bug is present in both 2.4 and 2.6.  Same patch will apply to both just
      fine.
      Signed-off-by: NAndrew Morton <akpm@osdl.org>
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      1344a416
    • H
      [RPC]: Kill bogus kmap in krb5 · c3a20692
      Herbert Xu 提交于
      While I was going through the crypto users recently, I noticed this
      bogus kmap in sunrpc.  It's totally unnecessary since the crypto
      layer will do its own kmap before touching the data.  Besides, the
      kmap is throwing the return value away.
      Signed-off-by: NHerbert Xu <herbert@gondor.apana.org.au>
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      c3a20692
    • D
      [TCP]: Do TSO deferral even if tail SKB can go out now. · 14869c38
      Dmitry Yusupov 提交于
      If the tail SKB fits into the window, it is still
      benefitical to defer until the goal percentage of
      the window is available.  This give the application
      time to feed more data into the send queue and thus
      results in larger TSO frames going out.
      
      Patch from Dmitry Yusupov <dima@neterion.com>.
      Signed-off-by: NDavid S. Miller <davem@davemloft.net>
      14869c38
  2. 21 8月, 2005 6 次提交
  3. 20 8月, 2005 14 次提交
  4. 19 8月, 2005 12 次提交