Annotation of elwix/patches/freebsd.pf.3whs.PR197484.patch, revision 1.2
1.2 ! misho 1: Index: sys/netpfil/pf/pf.c
! 2: ===================================================================
! 3: --- sys/netpfil/pf/pf.c (revision 277815)
! 4: +++ sys/netpfil/pf/pf.c (working copy)
! 5: @@ -4199,7 +4199,7 @@
! 6: TH_SYN|TH_ACK, 0, (*state)->src.mss, 0, 1, 0, NULL);
! 7: REASON_SET(reason, PFRES_SYNPROXY);
! 8: return (PF_SYNPROXY_DROP);
! 9: - } else if (!(th->th_flags & TH_ACK) ||
! 10: + } else if ((th->th_flags & (TH_ACK|TH_RST|TH_FIN)) != TH_ACK ||
! 11: (ntohl(th->th_ack) != (*state)->src.seqhi + 1) ||
! 12: (ntohl(th->th_seq) != (*state)->src.seqlo + 1)) {
! 13: REASON_SET(reason, PFRES_SYNPROXY);
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>