Displaying 2 results from an estimated 2 matches for "th_fin".
Did you mean:
t_fin
2005 May 20
1
Possible PAWS security vulnerability
...5_tcp.patch
*/
if ((to.to_flags & TOF_TS) != 0 &&
SEQ_LEQ(th->th_seq, tp->last_ack_sent)) {
+ if (SEQ_LEQ(tp->last_ack_sent, th->th_seq + tlen
+
+ ((thflags & (TH_SYN|TH_FIN)) != 0)))
+ tp->ts_recent = to.to_tsval;
+ else
+ tp->ts_recent = 0;
tp->ts_recent_age = ticks;
tp->ts_recent = to.to_tsval;
}
After I ba...
2005 Jul 02
3
packets with syn/fin vs pf_norm.c
...the source and this what I found:
/usr/src/sys/contrib/pf/net/pf_norm.c:1424:
---
flags = th->th_flags;
if (flags & TH_SYN) {
/* Illegal packet */
if (flags & TH_RST)
goto tcp_drop;
if (flags & TH_FIN)
flags &= ~TH_FIN;
} else {
/* Illegal packet */
if (!(flags & (TH_ACK|TH_RST)))
goto tcp_drop;
}
---
Wouldn't this code also check if I got TCP_DROP_SYNFIN set in my kernel
and/or if I got...