tcp: Fix tcp_v4_rcv()

Commit d218d111 (tcp: Generalized TTL Security Mechanism) added a bug for TIMEWAIT sockets. We should not test min_ttl for TW sockets. Reported-by: N Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Signed-off-by: N Eric Dumazet <eric.dumazet@gmail.com> Acked-by: N Stephen Hemminger <shemminger@vyatta.com> Signed-off-by: N David S. Miller <davem@davemloft.net>

tcp: Fix tcp_v4_rcv()
Commit d218d111 (tcp: Generalized TTL Security Mechanism) added a bug for TIMEWAIT sockets. We should not test min_ttl for TW sockets. Reported-by: N Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> Signed-off-by: N Eric Dumazet <eric.dumazet@gmail.com> Acked-by: N Stephen Hemminger <shemminger@vyatta.com> Signed-off-by: N David S. Miller <davem@davemloft.net>
bb134d5d · Eric Dumazet · David S. Miller · fe234f0e · bb134d5d
隐藏空白更改
内联并排

Showing with 4 addition and 4 deletion

net/ipv4/tcp_ipv4.c net/ipv4/tcp_ipv4.c +4 -4

未找到文件。
--- a/net/ipv4/tcp_ipv4.c
+++ b/net/ipv4/tcp_ipv4.c
@@ -1651,15 +1651,15 @@ int tcp_v4_rcv(struct sk_buff *skb)
 	if (!sk)
 		goto no_tcp_socket;

+process:
+	if (sk->sk_state == TCP_TIME_WAIT)
+		goto do_time_wait;
+
 	if (unlikely(iph->ttl < inet_sk(sk)->min_ttl)) {
 		NET_INC_STATS_BH(net, LINUX_MIB_TCPMINTTLDROP);
 		goto discard_and_relse;
 	}

-process:
-	if (sk->sk_state == TCP_TIME_WAIT)
-		goto do_time_wait;
-
 	if (!xfrm4_policy_check(sk, XFRM_POLICY_IN, skb))
 		goto discard_and_relse;
 	nf_reset(skb);