]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c1005d8) | patch
Don't expose the uptime via the TCP timestamps.
authortuexen <tuexen@FreeBSD.org>
Sun, 19 Aug 2018 14:56:10 +0000 (14:56 +0000)
committertuexen <tuexen@FreeBSD.org>
Sun, 19 Aug 2018 14:56:10 +0000 (14:56 +0000)
commit15475064396f6e538c65ec91fffe9768128b2ca4
treeab4a5e238303baaf65a9920f035e4263244c988ftree | snapshot
parentc1005d83992a9fd0bd80fa0392e8bc28824d6803commit | diff
Don't expose the uptime via the TCP timestamps.

The TCP client side or the TCP server side when not using SYN-cookies
used the uptime as the TCP timestamp value. This patch uses in all
cases an offset, which is the result of a keyed hash function taking
the source and destination addresses and port numbers into account.
The keyed hash function is the same a used for the initial TSN.

Reviewed by: rrs@
MFC after: 1 month
Sponsored by: Netflix, Inc.
Differential Revision: https://reviews.freebsd.org/D16636
sys/netinet/tcp_subr.c diff | blob | history
sys/netinet/tcp_syncache.c diff | blob | history
sys/netinet/tcp_usrreq.c diff | blob | history
sys/netinet/tcp_var.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.