1. 10 Nov, 2016 4 commits
    • David Ahern's avatar
      net: tcp response should set oif only if it is L3 master · 9b6c14d5
      David Ahern authored
      Lorenzo noted an Android unit test failed due to e0d56fdd:
      "The expectation in the test was that the RST replying to a SYN sent to a
      closed port should be generated with oif=0. In other words it should not
      prefer the interface where the SYN came in on, but instead should follow
      whatever the routing table says it should do."
      
      Revert the change to ip_send_unicast_reply and tcp_v6_send_response such
      that the oif in the flow is set to the skb_iif only if skb_iif is an L3
      master.
      
      Fixes: e0d56fdd ("net: l3mdev: remove redundant calls")
      Reported-by: default avatarLorenzo Colitti <lorenzo@google.com>
      Signed-off-by: default avatarDavid Ahern <dsa@cumulusnetworks.com>
      Tested-by: default avatarLorenzo Colitti <lorenzo@google.com>
      Acked-by: default avatarLorenzo Colitti <lorenzo@google.com>
      Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
      9b6c14d5
    • Allan Chou's avatar
      Net Driver: Add Cypress GX3 VID=04b4 PID=3610. · 8da3cf2a
      Allan Chou authored
      Add support for Cypress GX3 SuperSpeed to Gigabit Ethernet
      Bridge Controller (Vendor=04b4 ProdID=3610).
      
      Patch verified on x64 linux kernel 4.7.4, 4.8.6, 4.9-rc4 systems
      with the Kensington SD4600P USB-C Universal Dock with Power,
      which uses the Cypress GX3 SuperSpeed to Gigabit Ethernet Bridge
      Controller.
      
      A similar patch was signed-off and tested-by Allan Chou
      <allan@asix.com.tw> on 2015-12-01.
      
      Allan verified his similar patch on x86 Linux kernel 4.1.6 system
      with Cypress GX3 SuperSpeed to Gigabit Ethernet Bridge Controller.
      Tested-by: default avatarAllan Chou <allan@asix.com.tw>
      Tested-by: default avatarChris Roth <chris.roth@usask.ca>
      Tested-by: default avatarArtjom Simon <artjom.simon@gmail.com>
      Signed-off-by: default avatarAllan Chou <allan@asix.com.tw>
      Signed-off-by: default avatarChris Roth <chris.roth@usask.ca>
      Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
      8da3cf2a
    • David S. Miller's avatar
      Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf · 9fa684ec
      David S. Miller authored
      Pablo Neira Ayuso says:
      
      ====================
      Netfilter fixes for net
      
      The following patchset contains a larger than usual batch of Netfilter
      fixes for your net tree. This series contains a mixture of old bugs and
      recently introduced bugs, they are:
      
      1) Fix a crash when using nft_dynset with nft_set_rbtree, which doesn't
         support the set element updates from the packet path. From Liping
         Zhang.
      
      2) Fix leak when nft_expr_clone() fails, from Liping Zhang.
      
      3) Fix a race when inserting new elements to the set hash from the
         packet path, also from Liping.
      
      4) Handle segmented TCP SIP packets properly, basically avoid that the
         INVITE in the allow header create bogus expectations by performing
         stricter SIP message parsing, from Ulrich Weber.
      
      5) nft_parse_u32_check() should return signed integer for errors, from
         John Linville.
      
      6) Fix wrong allocation instead of connlabels, allocate 16 instead of
         32 bytes, from Florian Westphal.
      
      7) Fix compilation breakage when building the ip_vs_sync code with
         CONFIG_OPTIMIZE_INLINING on x86, from Arnd Bergmann.
      
      8) Destroy the new set if the transaction object cannot be allocated,
         also from Liping Zhang.
      
      9) Use device to route duplicated packets via nft_dup only when set by
         the user, otherwise packets may not follow the right route, again
         from Liping.
      
      10) Fix wrong maximum genetlink attribute definition in IPVS, from
          WANG Cong.
      
      11) Ignore untracked conntrack objects from xt_connmark, from Florian
          Westphal.
      
      12) Allow to use conntrack helpers that are registered NFPROTO_UNSPEC
          via CT target, otherwise we cannot use the h.245 helper, from
          Florian.
      
      13) Revisit garbage collection heuristic in the new workqueue-based
          timer approach for conntrack to evict objects earlier, again from
          Florian.
      
      14) Fix crash in nf_tables when inserting an element into a verdict map,
          from Liping Zhang.
      ====================
      Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
      9fa684ec
    • Mathias Krause's avatar
      rtnl: reset calcit fptr in rtnl_unregister() · f567e950
      Mathias Krause authored
      To avoid having dangling function pointers left behind, reset calcit in
      rtnl_unregister(), too.
      
      This is no issue so far, as only the rtnl core registers a netlink
      handler with a calcit hook which won't be unregistered, but may become
      one if new code makes use of the calcit hook.
      
      Fixes: c7ac8679 ("rtnetlink: Compute and store minimum ifinfo...")
      Cc: Jeff Kirsher <jeffrey.t.kirsher@intel.com>
      Cc: Greg Rose <gregory.v.rose@intel.com>
      Signed-off-by: default avatarMathias Krause <minipli@googlemail.com>
      Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
      f567e950
  2. 09 Nov, 2016 12 commits
  3. 08 Nov, 2016 9 commits
  4. 07 Nov, 2016 8 commits
  5. 04 Nov, 2016 7 commits