Folks, There seems to be a bug in the setting of the IPv6 Flow Label for TCP connections.
When an incoming connection is received, the SYN/ACK is always sent with the FL set to zero. It seems that syn_cache_respond() and syn_cache_add() should be patched, together with the SYN-cookies generation function (as you need to remember the FL you used for the SYN/ACK, since the FL is supposed to remain constant during the life of the connection). Might be able to produce a patch in a couple of weeks, but mentioned it in the event anyone else finds some cycles before I do. Thanks, -- Fernando Gont e-mail: [email protected] || [email protected] PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1
