diff options
Diffstat (limited to 'net/ipv6/tcp_ipv6.c')
| -rw-r--r-- | net/ipv6/tcp_ipv6.c | 45 | 
1 files changed, 18 insertions, 27 deletions
| diff --git a/net/ipv6/tcp_ipv6.c b/net/ipv6/tcp_ipv6.c index 94f4f89d73e7..b9f1fee9a886 100644 --- a/net/ipv6/tcp_ipv6.c +++ b/net/ipv6/tcp_ipv6.c @@ -671,6 +671,7 @@ static bool tcp_v6_inbound_md5_hash(const struct sock *sk,  				      NULL, skb);  	if (genhash || memcmp(hash_location, newhash, 16) != 0) { +		NET_INC_STATS(sock_net(sk), LINUX_MIB_TCPMD5FAILURE);  		net_info_ratelimited("MD5 Hash %s for [%pI6c]:%u->[%pI6c]:%u\n",  				     genhash ? "failed" : "mismatch",  				     &ip6h->saddr, ntohs(th->source), @@ -1193,6 +1194,16 @@ out:  	return NULL;  } +static void tcp_v6_restore_cb(struct sk_buff *skb) +{ +	/* We need to move header back to the beginning if xfrm6_policy_check() +	 * and tcp_v6_fill_cb() are going to be called again. +	 * ip6_datagram_recv_specific_ctl() also expects IP6CB to be there. +	 */ +	memmove(IP6CB(skb), &TCP_SKB_CB(skb)->header.h6, +		sizeof(struct inet6_skb_parm)); +} +  /* The socket must have it's spinlock held when we get   * here, unless it is a TCP_LISTEN socket.   * @@ -1218,7 +1229,7 @@ static int tcp_v6_do_rcv(struct sock *sk, struct sk_buff *skb)  	if (skb->protocol == htons(ETH_P_IP))  		return tcp_v4_do_rcv(sk, skb); -	if (sk_filter(sk, skb)) +	if (tcp_filter(sk, skb))  		goto discard;  	/* @@ -1322,6 +1333,7 @@ ipv6_pktoptions:  			np->flow_label = ip6_flowlabel(ipv6_hdr(opt_skb));  		if (ipv6_opt_accepted(sk, opt_skb, &TCP_SKB_CB(opt_skb)->header.h6)) {  			skb_set_owner_r(opt_skb, sk); +			tcp_v6_restore_cb(opt_skb);  			opt_skb = xchg(&np->pktoptions, opt_skb);  		} else {  			__kfree_skb(opt_skb); @@ -1355,15 +1367,6 @@ static void tcp_v6_fill_cb(struct sk_buff *skb, const struct ipv6hdr *hdr,  	TCP_SKB_CB(skb)->sacked = 0;  } -static void tcp_v6_restore_cb(struct sk_buff *skb) -{ -	/* We need to move header back to the beginning if xfrm6_policy_check() -	 * and tcp_v6_fill_cb() are going to be called again. -	 */ -	memmove(IP6CB(skb), &TCP_SKB_CB(skb)->header.h6, -		sizeof(struct inet6_skb_parm)); -} -  static int tcp_v6_rcv(struct sk_buff *skb)  {  	const struct tcphdr *th; @@ -1415,6 +1418,7 @@ process:  		sk = req->rsk_listener;  		tcp_v6_fill_cb(skb, hdr, th);  		if (tcp_v6_inbound_md5_hash(sk, skb)) { +			sk_drops_add(sk, skb);  			reqsk_put(req);  			goto discard_it;  		} @@ -1453,8 +1457,10 @@ process:  	if (tcp_v6_inbound_md5_hash(sk, skb))  		goto discard_and_relse; -	if (sk_filter(sk, skb)) +	if (tcp_filter(sk, skb))  		goto discard_and_relse; +	th = (const struct tcphdr *)skb->data; +	hdr = ipv6_hdr(skb);  	skb->dev = NULL; @@ -1471,10 +1477,7 @@ process:  	if (!sock_owned_by_user(sk)) {  		if (!tcp_prequeue(sk, skb))  			ret = tcp_v6_do_rcv(sk, skb); -	} else if (unlikely(sk_add_backlog(sk, skb, -					   sk->sk_rcvbuf + sk->sk_sndbuf))) { -		bh_unlock_sock(sk); -		__NET_INC_STATS(net, LINUX_MIB_TCPBACKLOGDROP); +	} else if (tcp_add_backlog(sk, skb)) {  		goto discard_and_relse;  	}  	bh_unlock_sock(sk); @@ -1868,17 +1871,6 @@ void tcp6_proc_exit(struct net *net)  }  #endif -static void tcp_v6_clear_sk(struct sock *sk, int size) -{ -	struct inet_sock *inet = inet_sk(sk); - -	/* we do not want to clear pinet6 field, because of RCU lookups */ -	sk_prot_clear_nulls(sk, offsetof(struct inet_sock, pinet6)); - -	size -= offsetof(struct inet_sock, pinet6) + sizeof(inet->pinet6); -	memset(&inet->pinet6 + 1, 0, size); -} -  struct proto tcpv6_prot = {  	.name			= "TCPv6",  	.owner			= THIS_MODULE, @@ -1920,7 +1912,6 @@ struct proto tcpv6_prot = {  	.compat_setsockopt	= compat_tcp_setsockopt,  	.compat_getsockopt	= compat_tcp_getsockopt,  #endif -	.clear_sk		= tcp_v6_clear_sk,  	.diag_destroy		= tcp_abort,  }; |