CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

author	Mariusz Zaborski <oshogbo@FreeBSD.org>
	Mon, 23 Oct 2023 21:03:51 +0000 (23:03 +0200)
committer	Ed Maste <emaste@FreeBSD.org>
	Wed, 8 Nov 2023 00:49:31 +0000 (19:49 -0500)
commit	acd860c3622d2591f4eeaaf241094c311c5c642a
tree	295d78ec669eb3645a797da78a39189ba1ec76bc	tree \| snapshot
parent	d51a39b13ee4de5410f6c01a357eafc6248f6724	commit \| diff

cap_net: correct capability name from addr2name to name2addr

Previously, while checking name2addr capabilities, we mistakenly used
the addr2name set. This error could cause a process to inadvertently
reset its limitations.

Reported by: Shawn Webb <shawn.webb@hardenedbsd.org>

(cherry picked from commit afd74c400075d94e01dd3430844bb290834660ef)
(cherry picked from commit 765757c6301fa41c0b59108347c600fbc9020c39)
(cherry picked from commit 114c6d9bef765a47ebcb8e65d1c935cbcbe51002)

Approved by: so
Approved by: re (implicit)
Security: SA-23:16.cap_net
Sponsored by: The FreeBSD Foundation

lib/libcasper/services/cap_net/cap_net.c		diff \| blob \| history
lib/libcasper/services/cap_net/tests/net_test.c		diff \| blob \| history