git.cascardo.eti.br Git - cascardo/linux.git/commit

author	Jon Paul Maloy <jon.maloy@ericsson.com>
	Thu, 15 Oct 2015 18:52:42 +0000 (14:52 -0400)
committer	David S. Miller <davem@davemloft.net>
	Fri, 16 Oct 2015 06:55:20 +0000 (23:55 -0700)
commit	81204c492b05274ade680c54787cd8ba234dcfd7
tree	27f60c46cc27e231e6ea4a1137decddb5a3f5f92	tree \| snapshot
parent	f9aa358a8109f9f33e96c3a7efb9a07631670294	commit \| diff

tipc: improve sequence number checking

The sequence number of an incoming packet is currently only checked
for less than, equality to, or bigger than the next expected number,
meaning that the receive window in practice becomes one half sequence
number cycle, or U16_MAX/2. This does not make sense, and may not even
be safe if there are extreme delays in the network. Any packet sent by
the peer during the ongoing cycle must belong inside his current send
window, or should otherwise be dropped if possible.

Since a link endpoint cannot know its peer's current send window, it
has to base this sanity check on a worst-case assumption, i.e., that
the peer is using a maximum sized window of 8191 packets. Using this
assumption, we now add a check that the sequence number is not bigger
than next_expected + TIPC_MAX_LINK_WIN. We also re-order the checks
done, so that the receive window test is performed before the gap test.
This way, we are guaranteed that no packet with illegal sequence numbers
are ever added to the deferred queue.

Signed-off-by: Jon Maloy <jon.maloy@ericsson.com>
Acked-by: Ying Xue <ying.xue@windriver.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

net/tipc/link.c		diff \| blob \| history
net/tipc/link.h		diff \| blob \| history