diff options
| author | Samuel Jero <sj323707@ohio.edu> | 2012-02-26 20:22:02 -0500 |
|---|---|---|
| committer | Gerrit Renker <gerrit@erg.abdn.ac.uk> | 2012-03-03 11:02:52 -0500 |
| commit | f541fb7e20c848f947ca65fbf169efe69400c942 (patch) | |
| tree | 689f3a7a46ca00b6610667e33313f339645b229d /net/dccp/output.c | |
| parent | 793734b587a670e47a8d65f9e5211ba2188bb904 (diff) | |
dccp: fix bug in sequence number validation during connection setup
This fixes a bug in the sequence number validation during the initial handshake.
The code did not treat the initial sequence numbers ISS and ISR as read-only and
did not keep state for GSR and GSS as required by the specification. This causes
problems with retransmissions during the initial handshake, causing the
budding connection to be reset.
This patch now treats ISS/ISR as read-only and tracks GSS/GSR as required.
Signed-off-by: Samuel Jero <sj323707@ohio.edu>
Signed-off-by: Gerrit Renker <gerrit@erg.abdn.ac.uk>
Diffstat (limited to 'net/dccp/output.c')
| -rw-r--r-- | net/dccp/output.c | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/net/dccp/output.c b/net/dccp/output.c index dede3edb8849..787367308797 100644 --- a/net/dccp/output.c +++ b/net/dccp/output.c | |||
| @@ -408,10 +408,10 @@ struct sk_buff *dccp_make_response(struct sock *sk, struct dst_entry *dst, | |||
| 408 | skb_dst_set(skb, dst_clone(dst)); | 408 | skb_dst_set(skb, dst_clone(dst)); |
| 409 | 409 | ||
| 410 | dreq = dccp_rsk(req); | 410 | dreq = dccp_rsk(req); |
| 411 | if (inet_rsk(req)->acked) /* increase ISS upon retransmission */ | 411 | if (inet_rsk(req)->acked) /* increase GSS upon retransmission */ |
| 412 | dccp_inc_seqno(&dreq->dreq_iss); | 412 | dccp_inc_seqno(&dreq->dreq_gss); |
| 413 | DCCP_SKB_CB(skb)->dccpd_type = DCCP_PKT_RESPONSE; | 413 | DCCP_SKB_CB(skb)->dccpd_type = DCCP_PKT_RESPONSE; |
| 414 | DCCP_SKB_CB(skb)->dccpd_seq = dreq->dreq_iss; | 414 | DCCP_SKB_CB(skb)->dccpd_seq = dreq->dreq_gss; |
| 415 | 415 | ||
| 416 | /* Resolve feature dependencies resulting from choice of CCID */ | 416 | /* Resolve feature dependencies resulting from choice of CCID */ |
| 417 | if (dccp_feat_server_ccid_dependencies(dreq)) | 417 | if (dccp_feat_server_ccid_dependencies(dreq)) |
| @@ -429,8 +429,8 @@ struct sk_buff *dccp_make_response(struct sock *sk, struct dst_entry *dst, | |||
| 429 | DCCP_SKB_CB(skb)->dccpd_opt_len) / 4; | 429 | DCCP_SKB_CB(skb)->dccpd_opt_len) / 4; |
| 430 | dh->dccph_type = DCCP_PKT_RESPONSE; | 430 | dh->dccph_type = DCCP_PKT_RESPONSE; |
| 431 | dh->dccph_x = 1; | 431 | dh->dccph_x = 1; |
| 432 | dccp_hdr_set_seq(dh, dreq->dreq_iss); | 432 | dccp_hdr_set_seq(dh, dreq->dreq_gss); |
| 433 | dccp_hdr_set_ack(dccp_hdr_ack_bits(skb), dreq->dreq_isr); | 433 | dccp_hdr_set_ack(dccp_hdr_ack_bits(skb), dreq->dreq_gsr); |
| 434 | dccp_hdr_response(skb)->dccph_resp_service = dreq->dreq_service; | 434 | dccp_hdr_response(skb)->dccph_resp_service = dreq->dreq_service; |
| 435 | 435 | ||
| 436 | dccp_csum_outgoing(skb); | 436 | dccp_csum_outgoing(skb); |