diff options
-rw-r--r-- | net/ipv4/tcp_input.c | 11 |
1 files changed, 9 insertions, 2 deletions
diff --git a/net/ipv4/tcp_input.c b/net/ipv4/tcp_input.c index 904289d2b6bb..c1339d88bbf3 100644 --- a/net/ipv4/tcp_input.c +++ b/net/ipv4/tcp_input.c | |||
@@ -1027,8 +1027,15 @@ static void tcp_update_reordering(struct sock *sk, const int metric, | |||
1027 | * SACK block range validation checks that the received SACK block fits to | 1027 | * SACK block range validation checks that the received SACK block fits to |
1028 | * the expected sequence limits, i.e., it is between SND.UNA and SND.NXT. | 1028 | * the expected sequence limits, i.e., it is between SND.UNA and SND.NXT. |
1029 | * Note that SND.UNA is not included to the range though being valid because | 1029 | * Note that SND.UNA is not included to the range though being valid because |
1030 | * it means that the receiver is rather inconsistent with itself (reports | 1030 | * it means that the receiver is rather inconsistent with itself reporting |
1031 | * SACK reneging when it should advance SND.UNA). | 1031 | * SACK reneging when it should advance SND.UNA. Such SACK block this is |
1032 | * perfectly valid, however, in light of RFC2018 which explicitly states | ||
1033 | * that "SACK block MUST reflect the newest segment. Even if the newest | ||
1034 | * segment is going to be discarded ...", not that it looks very clever | ||
1035 | * in case of head skb. Due to potentional receiver driven attacks, we | ||
1036 | * choose to avoid immediate execution of a walk in write queue due to | ||
1037 | * reneging and defer head skb's loss recovery to standard loss recovery | ||
1038 | * procedure that will eventually trigger (nothing forbids us doing this). | ||
1032 | * | 1039 | * |
1033 | * Implements also blockage to start_seq wrap-around. Problem lies in the | 1040 | * Implements also blockage to start_seq wrap-around. Problem lies in the |
1034 | * fact that though start_seq (s) is before end_seq (i.e., not reversed), | 1041 | * fact that though start_seq (s) is before end_seq (i.e., not reversed), |