23 Sep, 2006
40 commits
-
Fix ackvector length calculation upon receiving an "ack-of-ack". This
patch avoids the ackvector from growing too large which causes it to
not be inserted into packets.Signed-off-by: Andrea Bittau
Signed-off-by: Arnaldo Carvalho de Melo
Signed-off-by: David S. Miller -
Hashing SAs by source address breaks templates with wildcards as tunnel
source since the source address used for hashing/lookup is still 0/0.
Move source address lookup to xfrm_tmpl_resolve_one() so we can use the
real address in the lookup.Signed-off-by: Patrick McHardy
Signed-off-by: David S. Miller -
It does not affect either mss-sized connections (obviously) or
connections controlled by Nagle (because there is only one small
segment in flight).The idea is to record the fact that a small segment arrives on a
connection, where one small segment has already been received and
still not-ACKed. In this case ACK is forced after tcp_recvmsg() drains
receive buffer.In other words, it is a "soft" each-2nd-segment ACK, which is enough
to preserve ACK clock even when ABC is enabled.Signed-off-by: Alexey Kuznetsov
Signed-off-by: David S. Miller -
The following fixes a bug where random mem is being tampered with in the
non-mls case; encountered by Jashua Brindle on a gentoo box.Signed-off-by: Venkat Yekkirala
Acked-by: Stephen Smalley
Signed-off-by: James Morris -
This patch contains the following cleanups:
- make the following needlessly global function static:
- socket.c: sctp_apply_peer_addr_params()
- add proper prototypes for the several global functions in
include/net/sctp/sctp.hNote that this fixes wrong prototypes for the following functions:
- sctp_snmp_proc_exit()
- sctp_eps_proc_exit()
- sctp_assocs_proc_exit()The latter was spotted by the GNU C compiler and reported
by David Woodhouse.Signed-off-by: Adrian Bunk
Acked-by: Sridhar Samudrala
Signed-off-by: David S. Miller -
iproute2 doesn't provide the NLM_F_CREATE flag when adding addresses,
it is assumed to be implied. The existing code issues a check on
said flag when the modify operation fails (likely due to ENOENT)
before continueing to create it, this leads to a hard to predict
result, therefore the NLM_F_CREATE check is removed.Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Same behaviour as IPv4, using IFF_UP is a no-no anyway.
Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Replaces INET6_IFADDR_RTA_SPACE with a new function calculating
the total required message size for all address messages.Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Change some netfilter tunables to __read_mostly. Also fixed some
incorrect file reference comments while I was in there.(this will be my last __read_mostly patch unless someone points out
something else that needs it)Signed-off-by: Brian Haley
Acked-by: Patrick McHardy
Signed-off-by: David S. Miller -
Change sctp globals to __read_mostly.
Signed-off-by: Brian Haley
Signed-off-by: David S. Miller -
Change some bridge sysctl tunables to __read_mostly.
Signed-off-by: Brian Haley
Signed-off-by: David S. Miller -
Additionaly exports the following information when providing
the list of registered generic netlink families:
- protocol version
- header size
- maximum number of attributes
- list of available operations including
- id
- flags
- avaiability of policy and doit/dumpit functionlibnl HEAD provides a utility to read this new information:
0x0010 nlctrl version 1
hdrsize 0 maxattr 6
op GETFAMILY (0x03) [POLICY,DOIT,DUMPIT]
0x0011 NLBL_MGMT version 1
hdrsize 0 maxattr 0
op unknown (0x02) [DOIT]
op unknown (0x03) [DOIT]
....Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
When changing a device by ifindex without including a IFLA_IFNAME
attribute, the ifname variable contains random garbage and is used
to change the device name.Signed-off-by: Patrick McHardy
Signed-off-by: David S. Miller -
It seems that during the MIPv6 respin, some code which was originally
conditionally compiled around CONFIG_XFRM_ADVANCED was accidently left
in after the config option was removed.This patch removes an extraneous pointer (xerr_idxp) which is no
longer needed.Signed-off-by: James Morris
Acked-by: Masahide NAKAMURA
Signed-off-by: David S. Miller -
Expose IPSEC modes output path to take an xfrm state as input param.
This makes it consistent with the input mode processing (which already
takes the xfrm state as a param).Signed-off-by: Jamal Hadi Salim
Signed-off-by: David S. Miller -
Function sk_filter() is called from tcp_v{4,6}_rcv() functions with arg
needlock = 0, while socket is not locked at that moment. In order to avoid
this and similar issues in the future, use rcu for sk->sk_filter field read
protection.Signed-off-by: Dmitry Mishin
Signed-off-by: Alexey Kuznetsov
Signed-off-by: Kirill Korotaev -
Signed-off-by: Masahide NAKAMURA
Signed-off-by: David S. Miller -
This is a minor fix about transformation state flushing
for net-2.6.19. Please apply it.Signed-off-by: David S. Miller
-
By passing a Linux-generated TSO packet straight back into Linux, Xen
becomes our first LRO user :) Unfortunately, there is at least one spot
in our stack that needs to be changed to cope with this.The receive MSS estimate is computed from the raw packet size. This is
broken if the packet is GSO/LRO. Fortunately the real MSS can be found
in gso_size so we simply need to use that if it is non-zero.Real LRO NICs should of course set the gso_size field in future.
Signed-off-by: Herbert Xu
Signed-off-by: David S. Miller -
A typo introduced by myself which leads to freeing the skb
containing the netlink message when it should free the newly
allocated skb for the reply.Signed-off-by: Thomas Graf
Signed-off-by: David S. Miller -
Signed-off-by: Brian Haley
Signed-off-by: David S. Miller -
Signed-off-by: Brian Haley
Signed-off-by: David S. Miller -
This patch makes the needlessly global struct simp_hash_info static.
Signed-off-by: Adrian Bunk
Signed-off-by: David S. Miller -
Add some missing include files to the NetLabel related header files.
Signed-off-by: Paul Moore
Signed-off-by: David S. Miller -
Uninline the selinux_netlbl_inode_permission() at the request of
Andrew Morton.Signed-off-by: Paul Moore
Signed-off-by: David S. Miller -
Rewrite ebitmap_import() so it is a bit cleaner and easier to read.
Signed-off-by: Paul Moore
Signed-off-by: David S. Miller -
Fix some incorrect comments.
Signed-off-by: Paul Moore
Signed-off-by: David S. Miller -
Removed some older function prototypes for functions that no longer exist.
Signed-off-by: Paul Moore
Signed-off-by: David S. Miller -
Fix a problem where the NetLabel specific fields of the sk_security_struct
structure were not being initialized early enough in some cases.Signed-off-by: Paul Moore
Signed-off-by: David S. Miller -
As Arnaldo Carvalho de Melo points out I should be using list_entry in case
the structure changes in future. Current code functions but is reliant
on position and requires type cast.Noticed when doing this that I have one more variable than I needed so
removing that also.Signed off by: Ian McDonald
Signed-off-by: David S. Miller -
If CONFIG_NETFILTER_DEBUG is enabled, it shouldn't change the
actions of the filtering. The message about skb->dst being NULL
is commonly triggered by dhclient, so it is useless. Make sure all
messages end in newline.Signed-off-by: Stephen Hemminger
Signed-off-by: David S. Miller -
Do some simple optimization on the nf_bridge_pad() function
and don't use magic constants. Eliminate a double call and
the #ifdef'd code for CONFIG_BRIDGE_NETFILTER.Signed-off-by: Stephen Hemminger
Signed-off-by: David S. Miller -
Cleanup and rearrangement for better style and clarity:
Split the function nf_bridge_maybe_copy_header into two pieces
Move copy portion out of line.
Use Ethernet header size macros.
Use header file to handle CONFIG_NETFILTER_BRIDGE differencesSigned-off-by: Stephen Hemminger
Signed-off-by: David S. Miller -
Signed-off-by: Alexey Dobriyan
Signed-off-by: David S. Miller -
There will be relatively small increase in sparse endian warnings, but
this (and sin_port) patch is a first step to make networking code
endian clean.Signed-off-by: Alexey Dobriyan
Signed-off-by: David S. Miller
