diff options
author | Bhasker Hariharan <bhaskerh@google.com> | 2019-06-10 15:39:35 -0700 |
---|---|---|
committer | Shentubot <shentubot@google.com> | 2019-06-10 15:40:44 -0700 |
commit | 3933dd5c04c56512eccb38657bb735f375db4de4 (patch) | |
tree | 8781f0109656b7832a80454ca2731047cda5876c /pkg/sentry/platform/kvm/machine.go | |
parent | a00157cc0e216a9829f2659ce35c856a22aa5ba2 (diff) |
Fixes to listen backlog handling.
Changes netstack to confirm to current linux behaviour where if the backlog is
full then we drop the SYN and do not send a SYN-ACK. Similarly we allow upto
backlog connections to be in SYN-RCVD state as long as the backlog is not full.
We also now drop a SYN if syn cookies are in use and the backlog for the
listening endpoint is full.
Added new tests to confirm the behaviour.
Also reverted the change to increase the backlog in TcpPortReuseMultiThread
syscall test.
Fixes #236
PiperOrigin-RevId: 252500462
Diffstat (limited to 'pkg/sentry/platform/kvm/machine.go')
0 files changed, 0 insertions, 0 deletions