diff options
| author | Eric Dumazet <edumazet@google.com> | 2013-02-21 12:18:52 +0000 |
|---|---|---|
| committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2013-02-28 06:32:27 -0800 |
| commit | ae593067dbed83010fee8ad59bab7948f3d3601f (patch) | |
| tree | eb6f227197dbfc218c7f12f7757a56cd644a9524 /include/net/inet_sock.h | |
| parent | b18383129b00d2d6aac160f55e27c5ba1cf9d49b (diff) | |
| download | kernel_samsung_smdk4412-ae593067dbed83010fee8ad59bab7948f3d3601f.zip kernel_samsung_smdk4412-ae593067dbed83010fee8ad59bab7948f3d3601f.tar.gz kernel_samsung_smdk4412-ae593067dbed83010fee8ad59bab7948f3d3601f.tar.bz2 | |
ipv6: use a stronger hash for tcp
[ Upstream commit 08dcdbf6a7b9d14c2302c5bd0c5390ddf122f664 ]
It looks like its possible to open thousands of TCP IPv6
sessions on a server, all landing in a single slot of TCP hash
table. Incoming packets have to lookup sockets in a very
long list.
We should hash all bits from foreign IPv6 addresses, using
a salt and hash mix, not a simple XOR.
inet6_ehashfn() can also separately use the ports, instead
of xoring them.
Reported-by: Neal Cardwell <ncardwell@google.com>
Signed-off-by: Eric Dumazet <edumazet@google.com>
Cc: Yuchung Cheng <ycheng@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Diffstat (limited to 'include/net/inet_sock.h')
| -rw-r--r-- | include/net/inet_sock.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/include/net/inet_sock.h b/include/net/inet_sock.h index 14dd9c7..26490b3 100644 --- a/include/net/inet_sock.h +++ b/include/net/inet_sock.h @@ -199,6 +199,7 @@ static inline void inet_sk_copy_descendant(struct sock *sk_to, extern int inet_sk_rebuild_header(struct sock *sk); extern u32 inet_ehash_secret; +extern u32 ipv6_hash_secret; extern void build_ehash_secret(void); static inline unsigned int inet_ehashfn(struct net *net, |