Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix problems with stateful filtering. Patch received from darrenr@.

Browse Source
This commit is contained in:
martti 2007-05-25 06:44:20 +00:00
parent 8add5b3a22
commit 6b17040b66
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
sys/dist/ipf/netinet/ip_state.c vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: ip_state.c,v 1.24 2007/05/15 22:52:51 martin Exp $ */
/* $NetBSD: ip_state.c,v 1.25 2007/05/25 06:44:20 martti Exp $ */
/*
* Copyright (C) 1995-2003 by Darren Reed.
@ -114,7 +114,7 @@ struct file;
#if !defined(lint)
#if defined(__NetBSD__)
#include <sys/cdefs.h>
__KERNEL_RCSID(0, "$NetBSD: ip_state.c,v 1.24 2007/05/15 22:52:51 martin Exp $");
__KERNEL_RCSID(0, "$NetBSD: ip_state.c,v 1.25 2007/05/25 06:44:20 martti Exp $");
#else
static const char sccsid[] = "@(#)ip_state.c 1.8 6/5/96 (C) 1993-2000 Darren Reed";
static const char rcsid[] = "@(#)Id: ip_state.c,v 2.186.2.66 2007/05/13 00:08:54 darrenr Exp";
@ -3510,6 +3510,7 @@ int flags;
if ((tcpflags & (TH_FIN|TH_ACK)) == TH_ACK) {
nstate = IPF_TCPS_TIME_WAIT;
}
rval = 1;
break;
case IPF_TCPS_LAST_ACK: /* 8 */
@ -3547,13 +3548,14 @@ int flags;
case IPF_TCPS_TIME_WAIT: /* 10 */
/* we're in 2MSL timeout now */
rval = 2;
if (ostate == IPF_TCPS_LAST_ACK) {
nstate = IPF_TCPS_CLOSED;
}
rval = 1;
break;
case IPF_TCPS_CLOSED: /* 11 */
rval = 2;
break;
default :