Bug 19913

Summary: add SYN+FIN counter
Product: Base System Reporter: hristo <hristo>
Component: kernAssignee: silby
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: 4.0-STABLE   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description hristo 2000-07-14 09:30:01 UTC 
As you know FreeBSD 4 has an option to drop SYN+FIN packets but it does
not has a counter of how much SYN+FIN packets were actually dropped. This
minor patch add sysctl variable to count them and have it for reference
when needed.

How-To-Repeat: 
Apply the patch.
Comment 1 Garrett A. Wollman 2000-07-14 16:40:32 UTC 
<<On Fri, 14 Jul 2000 11:29:21 +0300 (EEST), hristo@bginfo.net said:

> As you know FreeBSD 4 has an option to drop SYN+FIN packets but it does
> not has a counter of how much SYN+FIN packets were actually dropped. This
> minor patch add sysctl variable to count them and have it for reference
> when needed.

The code that implements this `feature' is buggy.  It should not drop
the packets, but rather, trim them back to just a SYN, as Solaris
does.  (This potentially requires adjusting sequence numbers,
depending on the contents of the packet.)  If implemented properly,
there is no need for instrumentation.

-GAWollman
Comment 2 Sheldon Hearn freebsd_committer freebsd_triage 2000-07-17 17:58:22 UTC 
Responsible Changed
From-To: freebsd-bugs->des

This patch appears to touch code that DES brought in.
Comment 3 K. Macy freebsd_committer freebsd_triage 2007-11-16 08:42:28 UTC 
State Changed
From-To: open->feedback


Is this still needed?
Comment 4 K. Macy freebsd_committer freebsd_triage 2007-11-16 08:42:28 UTC 
Responsible Changed
From-To: des->silby


Is this still needed?
Comment 5 Eitan Adler freebsd_committer freebsd_triage 2011-02-27 02:07:52 UTC 
State Changed
From-To: feedback->closed

Feedback timeout - probably obsoleted by years of code change