[NETFILTER]: Fix a locking bug in ip_conntrack_proto_tcp.

dc7cf779 · Martin Josefsson · David S. Miller · 9efdba05 · dc7cf779
Commit dc7cf779 authored Jan 09, 2003 by Martin Josefsson Committed by David S. Miller Jan 09, 2003
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 1 deletion

net/ipv4/netfilter/ip_conntrack_proto_tcp.c net/ipv4/netfilter/ip_conntrack_proto_tcp.c +2 -1

No files found.
--- a/net/ipv4/netfilter/ip_conntrack_proto_tcp.c
+++ b/net/ipv4/netfilter/ip_conntrack_proto_tcp.c
@@ -186,13 +186,13 @@ static int tcp_packet(struct ip_conntrack *conntrack,
 	    && tcph->syn && tcph->ack)
 		conntrack->proto.tcp.handshake_ack
 			= htonl(ntohl(tcph->seq) + 1);
-	WRITE_UNLOCK(&tcp_lock);

 	/* If only reply is a RST, we can consider ourselves not to
 	   have an established connection: this is a fairly common
 	   problem case, so we can delete the conntrack
 	   immediately.  --RR */
 	if (!(conntrack->status & IPS_SEEN_REPLY) && tcph->rst) {
+		WRITE_UNLOCK(&tcp_lock);
 		if (del_timer(&conntrack->timeout))
 			conntrack->timeout.function((unsigned long)conntrack);
 	} else {
@@ -203,6 +203,7 @@ static int tcp_packet(struct ip_conntrack *conntrack,
 		    && tcph->ack_seq == conntrack->proto.tcp.handshake_ack)
 			set_bit(IPS_ASSURED_BIT, &conntrack->status);

+		WRITE_UNLOCK(&tcp_lock);
 		ip_ct_refresh(conntrack, tcp_timeouts[newconntrack]);
 	}