diff options
| author |   sashan <sashan@openbsd.org> | 2019-08-15 18:44:53 +0000 |
|---|---|---|
| committer | sashan <sashan@openbsd.org> | 2019-08-15 18:44:53 +0000 |
| commit | bb94865e4f07e87e026b323657b354836e8082ba (patch) | |
| tree | 82b159557f1773ae33b7ec0452e91ae3a714d77a | |
| parent | minor cleanup: (diff) | |
| download | wireguard-openbsd-bb94865e4f07e87e026b323657b354836e8082ba.tar.xz wireguard-openbsd-bb94865e4f07e87e026b323657b354836e8082ba.zip | |
pfctl_reset() must set syncookies settings back to default
(bug found and fix tested by Jesper Wallin)
OK deraadt OK kn
| -rw-r--r-- | sbin/pfctl/pfctl.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/sbin/pfctl/pfctl.c b/sbin/pfctl/pfctl.c index 486b818051b..bbdc507c526 100644 --- a/sbin/pfctl/pfctl.c +++ b/sbin/pfctl/pfctl.c @@ -1,4 +1,4 @@ -/* $OpenBSD: pfctl.c,v 1.375 2019/07/09 16:42:48 kn Exp $ */ +/* $OpenBSD: pfctl.c,v 1.376 2019/08/15 18:44:53 sashan Exp $ */ /* * Copyright (c) 2001 Daniel Hartmeier @@ -2248,6 +2248,7 @@ pfctl_reset(int dev, int opts) pf.debug_set = 1; pf.reass_set = 1; pf.syncookieswat_set = 1; + pf.syncookies_set = 1; pf.ifname = strdup("none"); if (pf.ifname == NULL) err(1, "%s: strdup", __func__); |