Page MenuHomeFreeBSD
Differential D25888

Remove a seemingly unnecessary assertion from in6p_lookup_mcast_ifp().
ClosedPublic
Actions

Authored by markj on Jul 30 2020, 12:46 AM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Oct 27, 2:31 AM
Unknown Object (File)
Oct 3 2024, 1:50 AM
Unknown Object (File)
Oct 3 2024, 1:50 AM
Unknown Object (File)
Oct 3 2024, 1:49 AM
Unknown Object (File)
Sep 28 2024, 2:56 PM
Unknown Object (File)
Sep 11 2024, 11:03 AM
Unknown Object (File)
Sep 4 2024, 7:23 PM
Unknown Object (File)
Aug 10 2024, 5:43 PM
View All 36 Files
Subscribers
ae
imp
melifaro

Details

Reviewers
ae
melifaro
tuexen
hselasky
bz
Commits
rS363841: Remove an incorrect assertion from in6p_lookup_mcast_ifp().
Summary

syzkaller generated programs which created an IPv6 socket, cleared the
the IPV6_V6ONLY socket option, bound the socket to an IPv4-mapped
address, and invoked JOIN_GROUP or LEAVE_GROUP v6 socket options. Since
V6ONLY was cleared by the bind() call, this triggers an assertion
failure when in6p_lookup_mcast_ifp() gets called.

From reading the code I suspect that the assertion is unnecessary since
the inp address is not actually used by the multicast code. In other
words, whether or not the socket is connected or bound to an IPv4-mapped
IPv6 address is irrelevant. Thus I propose removing the assertion.

While here remove an unnecessary check for inp == NULL, which clearly
cannot happen.

Reported by: syzbot+d01ab3d5e6c1516a393c@syzkaller.appspotmail.com

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
head/
sys/
netinet6/
14 lines

Diff 75369

View Options

head/sys/netinet6/in6_mcast.c

Loading...