Re: FreeBSD 7 TCP syncache fix: request for testers
- From: Mike Silbersack <silby@xxxxxxxxx>
- Date: Wed, 25 Jul 2007 00:40:22 -0500 (CDT)
On Fri, 20 Jul 2007, Peter Wemm wrote:
TCP: [127.0.0.1]:52446 to [127.0.0.1]:1128 tcpflags 0x10<ACK>;
syncache_expand: Segment failed SYNCOOKIE authentication, segment
rejected (probably spoofed)
[...]
How on earth can localhost be spoofing itself? This is getting quite
absurd. :-(
Any extra ACK that arrives is probably being processed by the syncookie code is my guess. So, I think that the problem is probably anywhere except in the syncookie code.
I'll give your patch a shot and see if it improves things at all.
It won't, not for this case. :(
But I'll get it committed ASAP, because it fixes other cases. Unless, that is, things IRL keep interrupting me.
Mike "Silby" Silbersack
_______________________________________________
freebsd-net@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: FreeBSD 7 TCP syncache fix: request for testers
- From: Robert Watson
- Re: FreeBSD 7 TCP syncache fix: request for testers
- References:
- FreeBSD 7 TCP syncache fix: request for testers
- From: Mike Silbersack
- Re: FreeBSD 7 TCP syncache fix: request for testers
- From: Eygene Ryabinkin
- Re: FreeBSD 7 TCP syncache fix: request for testers
- From: Mike Silbersack
- Re: FreeBSD 7 TCP syncache fix: request for testers
- From: Peter Wemm
- FreeBSD 7 TCP syncache fix: request for testers
- Prev by Date: Merged em driver
- Next by Date: Re: kern/114714: [gre][patch] gre(4) is not MPSAFE and does not support keys
- Previous by thread: Re: FreeBSD 7 TCP syncache fix: request for testers
- Next by thread: Re: FreeBSD 7 TCP syncache fix: request for testers
- Index(es):
Relevant Pages
|
|
