artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 50f0c91) | patch
in pf_syncookie_validate, return early if we don't have syncookies in
authorhenning <henning@openbsd.org>
Mon, 10 Sep 2018 15:54:28 +0000 (15:54 +0000)
committerhenning <henning@openbsd.org>
Mon, 10 Sep 2018 15:54:28 +0000 (15:54 +0000)
commit671f98448e7016569b74af012f30ed59e5c4fc00
treea2c946a726a992da73bd969ae643d6ae3f8ebc5etree | snapshot
parent50f0c915fcbbb21948c1acba402791e5391da6c3commit | diff
in pf_syncookie_validate, return early if we don't have syncookies in
flight that can possibly match. there is a tiny but existing chance that
a sequence number matches w/ our hash and we'd end up dropping traffic.
unclear whether that has actually happened since the report chain is long :)
report via haesbert via bluhm; ok bluhm
sys/net/pf_syncookies.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim