HomeFreeBSD

tcp_twrespond: send signed segment when connection is TCP-MD5

Description

tcp_twrespond: send signed segment when connection is TCP-MD5

When a connection is established to use TCP-MD5, tcp_twrespond() doesn't
respond with a signed segment. This results in the host performing the
active close to remain in a TIME_WAIT state and the other host in the
LAST_ACK state. Fix this by sending a signed segment when the connection
is established to use TCP-MD5.

Reviewed by: glebius
Differential Revision: https://reviews.freebsd.org/D33490

(cherry picked from commit 2a28b045ca7f9b24dc2a8fee2148578edfc87143)

Details

Provenance
rewAuthored on Dec 20 2021, 8:30 PM
Reviewer
glebius
Differential Revision
D33490: tcp_twrespond: send signed segment when connection is TCP-MD5
Parents
rGbcc9518b98b3: Fix dtrace SDT probe tcp:::debug-input
Branches
Unknown
Tags
Unknown