freebsd-skq/sys/netinet
rwatson 7f1b6df8c3 When dropping a packet and issuing a reset during TCP segment handling,
unconditionally drop the tcbinfo lock (after all, we assert it lines
before), but call tcp_dropwithreset() under both inpcb and inpcbinfo
locks only if we pass in an tcpcb.  Otherwise, if the pointer is NULL,
firewall code may later recurse the global tcbinfo lock trying to look
up an inpcb.

This is an instance where a layering violation leads not only
potentially to code reentrace and recursion, but also to lock
recursion, and was revealed by the conversion to rwlocks because
acquiring a read lock on an rwlock already held with a write lock is
forbidden.  When these locks were mutexes, they simply recursed.

Reported by:	Stefan Ehmann <shoesoft at gmx dot net>
MFC after:	3 days
2008-09-24 11:07:03 +00:00
..
libalias Improve the entropy of the source port randomization for network address 2008-08-30 20:58:34 +00:00
accf_data.c Add FBSDID to all files in netinet so that people can more 2007-10-07 20:44:24 +00:00
accf_dns.c Add an accept filter for TCP based DNS requests. It waits until the 2008-07-18 14:44:51 +00:00
accf_http.c Add FBSDID to all files in netinet so that people can more 2007-10-07 20:44:24 +00:00
icmp6.h - Disabled responding to NI queries from a global address by default as 2007-05-17 21:20:24 +00:00
icmp_var.h Attempt to improve feature parity between UDPv4 and UDPv6 by merging 2007-07-19 22:34:25 +00:00
if_atm.c Add code to allow the system to handle multiple routing tables. 2008-05-09 23:03:00 +00:00
if_atm.h
if_ether.c oops commit the version that compiles 2008-09-14 08:24:45 +00:00
if_ether.h Don't duplicate the whole of arpresolve to arpresolve 2 for the sake 2007-12-31 23:48:06 +00:00
igmp_var.h Import rewrite of IPv4 socket multicast layer to support source-specific 2007-06-12 16:24:56 +00:00
igmp.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
igmp.h Stub out imported IGMPv3 definitions which clash with those of 2007-06-15 18:59:10 +00:00
in_cksum.c Add FBSDID to all files in netinet so that people can more 2007-10-07 20:44:24 +00:00
in_gif.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
in_gif.h
in_mcast.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
in_pcb.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
in_pcb.h Minor white space tweaks. 2008-08-07 09:06:04 +00:00
in_proto.c This patch provides the back end support for equal-cost multi-path 2008-04-13 05:45:14 +00:00
in_rmx.c Revert a part of the MRT commit that proved un-needed. 2008-09-14 08:19:48 +00:00
in_systm.h
in_var.h Revert a part of the MRT commit that proved un-needed. 2008-09-14 08:19:48 +00:00
in.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
in.h Clean up the code that checks the types of address so that it is 2008-04-17 12:50:42 +00:00
ip6.h Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
ip_carp.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
ip_carp.h Make sure that carp_header is 36 bytes long 2006-12-01 18:37:41 +00:00
ip_divert.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
ip_divert.h
ip_dummynet.c Consistently check IPFW and DUMMYNET privileges in the configuration 2008-05-22 08:10:31 +00:00
ip_dummynet.h 1) dummynet_io() declaration has changed. 2007-11-06 23:01:42 +00:00
ip_ecn.c Add FBSDID to all files in netinet so that people can more 2007-10-07 20:44:24 +00:00
ip_ecn.h
ip_encap.c Add FBSDID to all files in netinet so that people can more 2007-10-07 20:44:24 +00:00
ip_encap.h
ip_fastfwd.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
ip_fw2.c Export IPFW_TABLES_MAX via sysctl. Part of PR: 127058. 2008-09-14 09:24:12 +00:00
ip_fw_nat.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
ip_fw_pfil.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
ip_fw.h Export IPFW_TABLES_MAX value for compiled in defaults. 2008-09-21 20:42:42 +00:00
ip_gre.c Enqueue de-capsulated packet instead of performing direct dispatch. It's 2008-07-04 21:01:30 +00:00
ip_gre.h
ip_icmp.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
ip_icmp.h
ip_id.c Replace the random IP ID generation code we 2008-02-06 15:40:30 +00:00
ip_input.c Another V_ forgotten 2008-08-25 05:49:16 +00:00
ip_ipsec.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
ip_ipsec.h Take the route mtu into account, if available, when sending an 2008-04-09 05:17:18 +00:00
ip_mroute.c A bunch of formatting fixes brough to light by, or created by the Vimage commit 2008-08-20 01:05:56 +00:00
ip_mroute.h Add code to allow the system to handle multiple routing tables. 2008-05-09 23:03:00 +00:00
ip_options.c Fix a panic in MAC kernels that was a result of un-initialized label 2008-08-27 23:52:03 +00:00
ip_options.h Normalize style a bit: reduce pseudo-randomness of comment layout and 2007-05-11 10:48:30 +00:00
ip_output.c Fix a bug whereby multicast packets that are looped back locally 2008-08-29 20:42:58 +00:00
ip_var.h Another V_ forgotten 2008-08-25 05:49:16 +00:00
ip.h Remove IPTOS_CE and IPTOS_ECT constants. They were defined in RFC 2481 2007-10-19 12:46:15 +00:00
ipprotosw.h
pim_var.h
pim.h
raw_ip.c A bunch of formatting fixes brough to light by, or created by the Vimage commit 2008-08-20 01:05:56 +00:00
sctp_asconf.c - Out with some printfs. 2008-07-29 09:06:35 +00:00
sctp_asconf.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
sctp_auth.c - Macro-izes the packed declaration in all headers. 2008-06-14 07:58:05 +00:00
sctp_auth.h - fix send_failed notification contents 2007-06-09 13:46:57 +00:00
sctp_bsd_addr.c Nit 2008-08-09 11:28:57 +00:00
sctp_bsd_addr.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
sctp_cc_functions.c - Macro-izes the packed declaration in all headers. 2008-06-14 07:58:05 +00:00
sctp_cc_functions.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
sctp_constants.h - Out with some printfs. 2008-07-29 09:06:35 +00:00
sctp_crc32.c - Copyright change, cisco's silly tool wants it to say: 2007-05-08 17:01:12 +00:00
sctp_crc32.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
sctp_header.h - Macro-izes the packed declaration in all headers. 2008-06-14 07:58:05 +00:00
sctp_indata.c - Make strict-sacks be the default. 2008-08-28 09:44:07 +00:00
sctp_indata.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
sctp_input.c - Out with some printfs. 2008-07-29 09:06:35 +00:00
sctp_input.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
sctp_lock_bsd.h - Make strict-sacks be the default. 2008-08-28 09:44:07 +00:00
sctp_os_bsd.h Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
sctp_os.h - Fix address add handling to clear cached routes and source addresses 2007-08-24 00:53:53 +00:00
sctp_output.c - Make strict-sacks be the default. 2008-08-28 09:44:07 +00:00
sctp_output.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
sctp_pcb.c - When we close a socket with pending assoc's that are still 2008-08-27 13:13:35 +00:00
sctp_pcb.h Adds support for the SCTP_PORT_REUSE option 2008-07-31 11:08:30 +00:00
sctp_peeloff.c - Macro-izes the packed declaration in all headers. 2008-06-14 07:58:05 +00:00
sctp_peeloff.h - Copyright change, cisco's silly tool wants it to say: 2007-05-08 17:01:12 +00:00
sctp_structs.h - Adds support for the multi-asconf (From Kozuka-san) 2008-05-20 13:47:46 +00:00
sctp_sysctl.c - Macro-izes the packed declaration in all headers. 2008-06-14 07:58:05 +00:00
sctp_sysctl.h - Make strict-sacks be the default. 2008-08-28 09:44:07 +00:00
sctp_timer.c ok, non static the function and put in the .h so 2008-08-28 20:31:24 +00:00
sctp_timer.h ok, non static the function and put in the .h so 2008-08-28 20:31:24 +00:00
sctp_uio.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
sctp_usrreq.c Adds support for the SCTP_PORT_REUSE option 2008-07-31 11:08:30 +00:00
sctp_var.h - Make strict-sacks be the default. 2008-08-28 09:44:07 +00:00
sctp.h Adds support for the SCTP_PORT_REUSE option 2008-07-31 11:08:30 +00:00
sctputil.c - Make strict-sacks be the default. 2008-08-28 09:44:07 +00:00
sctputil.h 1) Adds the rest of the VIMAGE change macros 2008-07-09 16:45:30 +00:00
tcp_debug.c To my reading there are no real consumers of ip6_plen (IPv6 2008-09-07 20:44:45 +00:00
tcp_debug.h o Use a define for a buffer size. 2007-03-24 22:15:02 +00:00
tcp_fsm.h Make tcpstates[] static, and make sure TCPSTATES is defined before 2007-07-30 11:06:42 +00:00
tcp_hostcache.c Wrap an 81 column SYSCTL_NODE decleration. 2008-09-01 19:25:27 +00:00
tcp_input.c When dropping a packet and issuing a reset during TCP segment handling, 2008-09-24 11:07:03 +00:00
tcp_lro.c Don't calculate checksum if it has already been validated 2008-08-24 02:31:09 +00:00
tcp_lro.h Add generic TCP LOR into netinet 2008-06-11 22:12:50 +00:00
tcp_offload.c Don't check if an interface can do tcp offload if there are no offload devices registered on the system. 2008-09-01 05:30:22 +00:00
tcp_offload.h - Switch to INP_WLOCK macro from inp_wlock 2008-07-21 21:22:56 +00:00
tcp_output.c Implement IPv6 support for TCP MD5 Signature Option (RFC 2385) 2008-09-13 17:26:46 +00:00
tcp_reass.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
tcp_sack.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
tcp_seq.h Remove T/TCP RFC1644 Connection Count comparison macros. They are no longer 2006-06-18 14:24:12 +00:00
tcp_subr.c Implement IPv6 support for TCP MD5 Signature Option (RFC 2385) 2008-09-13 17:26:46 +00:00
tcp_syncache.c Implement IPv6 support for TCP MD5 Signature Option (RFC 2385) 2008-09-13 17:26:46 +00:00
tcp_syncache.h Move some struct defs around. This is a prep step for Vimage.A 2008-08-25 00:33:30 +00:00
tcp_timer.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
tcp_timer.h Two changes: 2007-09-24 05:26:24 +00:00
tcp_timewait.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
tcp_usrreq.c Commit step 1 of the vimage project, (network stack) 2008-08-17 23:27:27 +00:00
tcp_var.h Split tcp_mss() in tcp_mss() and tcp_mss_update() where the former 2008-09-07 18:50:25 +00:00
tcp.h add rcv_nxt, snd_nxt, and toe offload id to FreeBSD-specific 2008-05-05 20:13:31 +00:00
tcpip.h
toedev.h Don't check if an interface can do tcp offload if there are no offload devices registered on the system. 2008-09-01 05:30:22 +00:00
udp_usrreq.c Another missed V_ instance 2008-08-25 05:57:56 +00:00
udp_var.h Further cleanup of UDPv4: 2007-07-10 09:30:46 +00:00
udp.h Gratuitous UDP restyling toward style(9) in 7.x. 2007-02-20 10:13:11 +00:00