Use updated TCP timestamps when retransmitting SYN-ACK using the syncache code path
ClosedPublic
Actions

Authored by tuexen on May 31 2018, 12:12 PM.

Details

Reviewers

rrs
jtl
lstewart
hiren
jason_eggnet.com

Group Reviewers

transport

Commits

rS347153: MFC r335194:
rS335194: When retransmitting TCP SYN-ACK segments with the TCP timestamp option

Summary

FreeBSD currently reuses the TCP timestamp used in the transmission of a SYN-ACK segment when sending retransmissions. However, this only happens if done via the syncache code. The timestamp is not kept constant when retransmitting SYN segments or retransmitting the SYN-ACK from the generic code. FreeBSD also validates when receiving the ACK (third message of the handshake) that the timestamp was used.

This is inconsistent and also does not follow the specification. Other implementations (Mac OS X, Linux and Solaris) also do not show this behaviour.

Therefore, this patch changes the behaviour to consistently use an up to date timestamp also on SYN-ACK retransmissions.

Test Plan

Run the following packetdrill test scripts one time using sysctl -w net.inet.tcp.syncookies=1 and one time using sysctl -w net.inet.tcp.syncookies=0:

rtx-syn-syn-sent.pkt2 KBDownload

rtx-syn-ack-syn-rcvd-via-syn-sent.pkt2 KBDownload

rtx-syn-ack-syn-rcvd-via-listen.pkt2 KBDownload

rcv-old-syn-ack-syn-sent.pkt2 KBDownload

rcv-old-ack-syn-rcvd-via-syn-sent.pkt2 KBDownload

rcv-new-syn-ack-syn-sent.pkt2 KBDownload

rcv-old-ack-syn-rcvd-via-listen.pkt2 KBDownload

rcv-new-ack-syn-rcvd-via-syn-sent.pkt2 KBDownload

rcv-new-ack-syn-rcvd-via-listen.pkt2 KBDownload