Code Review / vpp.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 548f757) | patch
tcp: send challenge ack for in wnd syn 38/20038/2
authorFlorin Coras <fcoras@cisco.com>
Fri, 7 Jun 2019 19:38:55 +0000 (12:38 -0700)
committerDave Barach <openvpp@barachs.net>
Sat, 8 Jun 2019 16:41:42 +0000 (16:41 +0000)
commitd567a8d51bab6dbd45b70ec99e9b7a1b9ae58e71
tree8e137713eaa53ad502f47e22b2d84f9f0ded9084tree | snapshot
parent548f75744915c8e1c5e59fb866af0d912d1173a1commit | diff
tcp: send challenge ack for in wnd syn

Type: fix

Per rfc793, in window syns for established connections should lead to
connection resets. As a mitigation for blind reset attacks, rfc5961
requests that such syns be replied to with challange acks.

Change-Id: I75e4972bbb515e48d9cf1bda32ea5d9891d670f0
Signed-off-by: Florin Coras <fcoras@cisco.com>
src/vnet/tcp/tcp_input.c diff | blob | history
Vector Packet Processing