diff options
| author | Alexandr Nedvedicky <sashan@cvs.openbsd.org> | 2019-08-15 18:44:54 +0000 |
|---|---|---|
| committer | Alexandr Nedvedicky <sashan@cvs.openbsd.org> | 2019-08-15 18:44:54 +0000 |
| commit | 8627620069e433dc94f96caafa820a6ee4306978 (patch) | |
| tree | f667c31d9059dc2acf708b334ab0c7cbe3a15f30 /sbin | |
| parent | cfbf67a32eade9765089ba1d658c8470667d9aaf (diff) | |
pfctl_reset() must set syncookies settings back to default
(bug found and fix tested by Jesper Wallin)
OK deraadt OK kn
Diffstat (limited to 'sbin')
| -rw-r--r-- | sbin/pfctl/pfctl.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/sbin/pfctl/pfctl.c b/sbin/pfctl/pfctl.c index 486b818051b..bbdc507c526 100644 --- a/sbin/pfctl/pfctl.c +++ b/sbin/pfctl/pfctl.c @@ -1,4 +1,4 @@ -/* $OpenBSD: pfctl.c,v 1.375 2019/07/09 16:42:48 kn Exp $ */ +/* $OpenBSD: pfctl.c,v 1.376 2019/08/15 18:44:53 sashan Exp $ */ /* * Copyright (c) 2001 Daniel Hartmeier @@ -2248,6 +2248,7 @@ pfctl_reset(int dev, int opts) pf.debug_set = 1; pf.reass_set = 1; pf.syncookieswat_set = 1; + pf.syncookies_set = 1; pf.ifname = strdup("none"); if (pf.ifname == NULL) err(1, "%s: strdup", __func__); |