| commit | d521c5b34162e3d9ae559b09760d9d605e383f8a | |
| author | Greg KH <gregkh@suse.de> | |
| Fri, 22 Feb 2008 21:31:37 +0000 (22 13:31 -0800) | ||
| committer | Oliver Pinter <oliver.pntr@gmail.com> | |
| Sat, 23 Feb 2008 20:05:28 +0000 (23 21:05 +0100) | ||
| tree | 83ee18211fbcd9ebd3d7e040bbc98c5e25986123 | treesnapshot (tar.gz zip) |
| parent | 39a4f6ff2bda7660784b3dca9d3cdd2e99e08a5d | commitdiff |
NETFILTER: nf_conntrack_tcp: conntrack reopening fix
2.6.22-stable review patch. If anyone has any objections, please let us
know.
------------------
From: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
[NETFILTER]: nf_conntrack_tcp: conntrack reopening fix
[Upstream commits b2155e7f + d0c1fd7a]
TCP connection tracking in netfilter did not handle TCP reopening
properly: active close was taken into account for one side only and
not for any side, which is fixed now. The patch includes more comments
to explain the logic how the different cases are handled.
The bug was discovered by Jeff Chua.
Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Signed-off-by: Oliver Pinter <oliver.pntr@gmail.com>
2.6.22-stable review patch. If anyone has any objections, please let us
know.
------------------
From: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
[NETFILTER]: nf_conntrack_tcp: conntrack reopening fix
[Upstream commits b2155e7f + d0c1fd7a]
TCP connection tracking in netfilter did not handle TCP reopening
properly: active close was taken into account for one side only and
not for any side, which is fixed now. The patch includes more comments
to explain the logic how the different cases are handled.
The bug was discovered by Jeff Chua.
Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Signed-off-by: Oliver Pinter <oliver.pntr@gmail.com>
| net/netfilter/nf_conntrack_proto_tcp.c | diffblobblamehistory |