]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9557a68) | patch
In icmp6_rip6_input(), once we have a lock, make sure the inp is
authorbz <bz@FreeBSD.org>
Thu, 20 Sep 2018 15:45:53 +0000 (15:45 +0000)
committerbz <bz@FreeBSD.org>
Thu, 20 Sep 2018 15:45:53 +0000 (15:45 +0000)
commit5ca96117e64b181d1ea8796429599c4a13827bd7
tree282fb77626123b173ee1feca69387cfca9ae3d3ctree | snapshot
parent9557a686f98609021c77d2d2e44bb66ae708507ccommit | diff
In icmp6_rip6_input(), once we have a lock, make sure the inp is
not freed.  This can happen since the list traversal and locking
was converted to epoch(9).  If the inp is marked "freed", skip it.

This prevents a NULL pointer deref panic in ip6_savecontrol_v4()
trying to access the socket hanging off the inp, which was gone
by the time we got there.

Reported by: andrew
Tested by: andrew
Approved by: re (gjb)
sys/netinet6/icmp6.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.