]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9e8927b) | patch
NETFILTER: nf_conntrack_tcp: conntrack reopening fix
authorJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Tue, 19 Feb 2008 15:24:01 +0000 (16:24 +0100)
committerGreg Kroah-Hartman <gregkh@suse.de>
Tue, 26 Feb 2008 00:14:07 +0000 (16:14 -0800)
commit2bacfdb30305ffdea047ce860184ad0e570744b5
treee1cbb41ccc390e9a1ccbd5ca9abfa07a0a6bbc4atree
parent9e8927bf96eba0e21206dce478e2867708fa9bd0commit | diff
NETFILTER: nf_conntrack_tcp: conntrack reopening fix

[NETFILTER]: nf_conntrack_tcp: conntrack reopening fix

[Upstream commits b2155e7f + d0c1fd7a]

TCP connection tracking in netfilter did not handle TCP reopening
properly: active close was taken into account for one side only and
not for any side, which is fixed now. The patch includes more comments
to explain the logic how the different cases are handled.
The bug was discovered by Jeff Chua.

Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
net/netfilter/nf_conntrack_proto_tcp.c diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git