Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.19 / 409b545ac10d9548929557a75ad86540f59a2c83
commit409b545ac10d9548929557a75ad86540f59a2c83[log] [tgz]
authorPhil Oester <kernel@linuxace.com>Tue Jun 04 05:09:27 2013 +0000
committerPablo Neira Ayuso <pablo@netfilter.org>Wed Jun 05 13:59:22 2013 +0200
tree2d6be092933a6540dce90a36c10548859f09cc9e
parent37bc4f8dfa72fb43b84381abca39cfdbbc8ff2df [diff]
netfilter: xt_TCPMSS: Fix violation of RFC879 in absence of MSS option

The clamp-mss-to-pmtu option of the xt_TCPMSS target can cause issues
connecting to websites if there was no MSS option present in the
original SYN packet from the client. In these cases, it may add a
MSS higher than the default specified in RFC879. Fix this by never
setting a value > 536 if no MSS option was specified by the client.

This closes netfilter's bugzilla #662.

Signed-off-by: Phil Oester <kernel@linuxace.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
1 file changed
tree: 2d6be092933a6540dce90a36c10548859f09cc9e
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS