user/sven/linux.git/include/net/ip.h, branch v5.10.36 Linux Kernel https://git.stealer.net/cgit.cgi/user/sven/linux.git/atom?h=v5.10.36 2020-10-06T01:40:01Z Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net 2020-10-06T01:40:01Z David S. Miller davem@davemloft.net 2020-10-06T00:33:26Z urn:sha1:8b0308fe319b8002753ea66f8f940fb393792ddd Rejecting non-native endian BTF overlapped with the addition of support for it. The rest were more simple overlapping changes, except the renesas ravb binding update, which had to follow a file move as well as a YAML conversion. Signed-off-by: David S. Miller <davem@davemloft.net> net/ipv4: always honour route mtu during forwarding 2020-09-25T02:51:16Z Maciej Żenczykowski maze@google.com 2020-09-23T20:18:15Z urn:sha1:02a1b175b0e92d9e0fa5df3957ade8d733ceb6a0 Documentation/networking/ip-sysctl.txt:46 says: ip_forward_use_pmtu - BOOLEAN By default we don't trust protocol path MTUs while forwarding because they could be easily forged and can lead to unwanted fragmentation by the router. You only need to enable this if you have user-space software which tries to discover path mtus by itself and depends on the kernel honoring this information. This is normally not the case. Default: 0 (disabled) Possible values: 0 - disabled 1 - enabled Which makes it pretty clear that setting it to 1 is a potential security/safety/DoS issue, and yet it is entirely reasonable to want forwarded traffic to honour explicitly administrator configured route mtus (instead of defaulting to device mtu). Indeed, I can't think of a single reason why you wouldn't want to. Since you configured a route mtu you probably know better... It is pretty common to have a higher device mtu to allow receiving large (jumbo) frames, while having some routes via that interface (potentially including the default route to the internet) specify a lower mtu. Note that ipv6 forwarding uses device mtu unless the route is locked (in which case it will use the route mtu). This approach is not usable for IPv4 where an 'mtu lock' on a route also has the side effect of disabling TCP path mtu discovery via disabling the IPv4 DF (don't frag) bit on all outgoing frames. I'm not aware of a way to lock a route from an IPv6 RA, so that also potentially seems wrong. Signed-off-by: Maciej Żenczykowski <maze@google.com> Cc: Eric Dumazet <edumazet@google.com> Cc: Willem de Bruijn <willemb@google.com> Cc: Lorenzo Colitti <lorenzo@google.com> Cc: Sunmeet Gill (Sunny) <sgill@quicinc.com> Cc: Vinay Paradkar <vparadka@qti.qualcomm.com> Cc: Tyler Wear <twear@quicinc.com> Cc: David Ahern <dsahern@kernel.org> Reviewed-by: Eric Dumazet <edumazet@google.com> Signed-off-by: David S. Miller <davem@davemloft.net> ip: pass tos into ip_build_and_send_pkt() 2020-09-10T20:15:40Z Wei Wang weiwan@google.com 2020-09-10T00:50:47Z urn:sha1:de033b7d1568a8f1252055c96cdd99954d5450c4 This commit adds tos as a new passed in parameter to ip_build_and_send_pkt() which will be used in the later commit. This is a pure restructure and does not have any functional change. Signed-off-by: Wei Wang <weiwan@google.com> Signed-off-by: Eric Dumazet <edumazet@google.com> Signed-off-by: David S. Miller <davem@davemloft.net> net: pass a sockptr_t into ->setsockopt 2020-07-24T22:41:54Z Christoph Hellwig hch@lst.de 2020-07-23T06:09:07Z urn:sha1:a7b75c5a8c41445f33efb663887ff5f5c3b4454b Rework the remaining setsockopt code to pass a sockptr_t instead of a plain user pointer. This removes the last remaining set_fs(KERNEL_DS) outside of architecture specific code. Signed-off-by: Christoph Hellwig <hch@lst.de> Acked-by: Stefan Schmidt <stefan@datenfreihafen.org> [ieee802154] Acked-by: Matthieu Baerts <matthieu.baerts@tessares.net> Signed-off-by: David S. Miller <davem@davemloft.net> net/ipv4: merge ip_options_get and ip_options_get_from_user 2020-07-24T22:41:54Z Christoph Hellwig hch@lst.de 2020-07-23T06:08:57Z urn:sha1:de40a3e88311b6f0fc79b876a4768bf2d99f9aae Use the sockptr_t type to merge the versions. Signed-off-by: Christoph Hellwig <hch@lst.de> Signed-off-by: David S. Miller <davem@davemloft.net> net/ipv4: remove compat_ip_{get,set}sockopt 2020-07-20T01:16:41Z Christoph Hellwig hch@lst.de 2020-07-17T06:23:26Z urn:sha1:b6238c04c0e5dbe7ae4ea48e96e004905b120a04 Handle the few cases that need special treatment in-line using in_compat_syscall(). Signed-off-by: Christoph Hellwig <hch@lst.de> Signed-off-by: David S. Miller <davem@davemloft.net> tcp: remove indirect calls for icsk->icsk_af_ops->queue_xmit 2020-06-21T00:47:53Z Eric Dumazet edumazet@google.com 2020-06-19T19:12:34Z urn:sha1:05e22e8395058745bd0312bc488b522197852aff Mitigate RETPOLINE costs in __tcp_transmit_skb() by using INDIRECT_CALL_INET() wrapper. Signed-off-by: Eric Dumazet <edumazet@google.com> Signed-off-by: David S. Miller <davem@davemloft.net> ipv4: add ip_sock_set_pktinfo 2020-05-28T18:11:45Z Christoph Hellwig hch@lst.de 2020-05-28T05:12:30Z urn:sha1:c1f9ec5776dd05eaf62cf6788ecdfc905dc8ec2b Add a helper to directly set the IP_PKTINFO sockopt from kernel space without going through a fake uaccess. Signed-off-by: Christoph Hellwig <hch@lst.de> Signed-off-by: David S. Miller <davem@davemloft.net> ipv4: add ip_sock_set_mtu_discover 2020-05-28T18:11:45Z Christoph Hellwig hch@lst.de 2020-05-28T05:12:29Z urn:sha1:2de569bda2a66d1308ad3f205bb29cf4f95f5636 Add a helper to directly set the IP_MTU_DISCOVER sockopt from kernel space without going through a fake uaccess. Signed-off-by: Christoph Hellwig <hch@lst.de> Reviewed-by: David Howells <dhowells@redhat.com> [rxrpc bits] Signed-off-by: David S. Miller <davem@davemloft.net> ipv4: add ip_sock_set_recverr 2020-05-28T18:11:45Z Christoph Hellwig hch@lst.de 2020-05-28T05:12:28Z urn:sha1:db45c0ef258ef6c7ef3c1b8ea9e06e133e083c27 Add a helper to directly set the IP_RECVERR sockopt from kernel space without going through a fake uaccess. Signed-off-by: Christoph Hellwig <hch@lst.de> Reviewed-by: David Howells <dhowells@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net>