patch-2.0.35 linux/net/ipv4/tcp_input.c

Next file: linux/net/ipv4/tcp_output.c
Previous file: linux/net/ipv4/route.c
Back to the patch index
Back to the overall index

Lines: 70
Date: Mon Jul 13 13:47:41 1998
Orig file: v2.0.34/linux/net/ipv4/tcp_input.c
Orig date: Mon Jul 13 13:46:43 1998


diff -u --recursive --new-file v2.0.34/linux/net/ipv4/tcp_input.c linux/net/ipv4/tcp_input.c
@@ -36,6 +36,14 @@
  *              Elliot Poger    :       Added support for SO_BINDTODEVICE.
  *	Willy Konynenberg	:	Transparent proxy adapted to new
  *					socket hash code.
+ *	J Hadi Salim		:	We assumed that some idiot wasnt going
+ *	Alan Cox			to idly redefine bits of ToS in an
+ *					experimental protocol for other things
+ *					(ECN) - wrong!. Mask the bits off. Note
+ *					masking the bits if they dont use ECN
+ *					then use it for ToS is even more 
+ *					broken. 
+ *					</RANT>
  */
 
 #include <linux/config.h>
@@ -44,6 +52,12 @@
 #include <net/tcp.h>
 
 /*
+ *	Do we assume the IP ToS is entirely for its intended purpose
+ */
+ 
+#define TOS_VALID_MASK(x)		((x)&0x3F)
+ 
+/*
  *	Policy code extracted so it's now separate
  */
 
@@ -764,7 +778,7 @@
 	 */
 
 	newsk->ip_ttl=sk->ip_ttl;
-	newsk->ip_tos=skb->ip_hdr->tos;
+	newsk->ip_tos=TOS_VALID_MASK(skb->ip_hdr->tos);
 
 	/*
 	 *	Use 512 or whatever user asked for 
@@ -1024,7 +1038,7 @@
 	 */
 
 	newsk->ip_ttl=sk->ip_ttl;
-	newsk->ip_tos=skb->ip_hdr->tos;
+	newsk->ip_tos=TOS_VALID_MASK(skb->ip_hdr->tos);
 
 	rt = ip_rt_route(newsk->opt && newsk->opt->srr ? newsk->opt->faddr : saddr, 0,
 			 sk->bound_device);
@@ -1725,7 +1739,7 @@
 		if(sk->ip_xmit_timeout==TIME_KEEPOPEN)
 			tcp_reset_xmit_timer(sk, TIME_KEEPOPEN, TCP_TIMEOUT_LEN);
 	}
-	return 0;
+	return 1;
 }
 
 
@@ -2388,6 +2402,14 @@
 	 
 		if(sk->state==TCP_LISTEN)
 		{
+			/* Don't start connections with illegal address
+			   ranges. Trying to talk TCP to a broken dhcp host
+			   isnt good on a lan with broken SunOS 4.x boxes 
+			   who think its a broadcast */
+			   
+			if ((saddr | daddr) == 0)
+				goto discard_it;
+				
 			if (th->ack) {	/* These use the socket TOS.. might want to be the received TOS */
 #ifdef CONFIG_SYN_COOKIES
 				if (!th->syn && !th->rst) {

FUNET's LINUX-ADM group, linux-adm@nic.funet.fi

TCL-scripts by Sam Shen, slshen@lbl.gov