Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 450226 Details for
Bug 597134
hardened-sources-4.7.7: null pointer dereference when using tproxy
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
the working patch (for me)
tproxy-refcounter-bugfix.patch (text/plain), 877 bytes, created by
Alexander Sergeyev
on 2016-10-14 20:31:29 UTC
(
hide
)
Description:
the working patch (for me)
Filename:
MIME Type:
Creator:
Alexander Sergeyev
Created:
2016-10-14 20:31:29 UTC
Size:
877 bytes
patch
obsolete
>diff --git a/net/netfilter/xt_TPROXY.c b/net/netfilter/xt_TPROXY.c >index 7f4414d..663c4c3 100644 >--- a/net/netfilter/xt_TPROXY.c >+++ b/net/netfilter/xt_TPROXY.c >@@ -127,6 +127,8 @@ nf_tproxy_get_sock_v4(struct net *net, struct sk_buff *skb, void *hp, > daddr, dport, > in->ifindex); > >+ if (sk && !atomic_inc_not_zero(&sk->sk_refcnt)) >+ sk = NULL; > /* NOTE: we return listeners even if bound to > * 0.0.0.0, those are filtered out in > * xt_socket, since xt_TPROXY needs 0 bound >@@ -195,6 +197,8 @@ nf_tproxy_get_sock_v6(struct net *net, struct sk_buff *skb, int thoff, void *hp, > daddr, ntohs(dport), > in->ifindex); > >+ if (sk && !atomic_inc_not_zero(&sk->sk_refcnt)) >+ sk = NULL; > /* NOTE: we return listeners even if bound to > * 0.0.0.0, those are filtered out in > * xt_socket, since xt_TPROXY needs 0 bound
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=450226">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 597134
: 450226 |
450808
|
450810
