rtsock: fix buffer overrun (sockaddr misuse)
ClosedPublic
Actions

Authored by takahiro.kurosawa_gmail.com on Thu, May 12, 11:24 PM.

Details

Reviewers

melifaro
markj
kp

Group Reviewers

network

Commits

R10:9573cc35555e: rtsock: fix a stack overflow

Summary

struct sockaddr is not sufficient for buffer that can hold any
sockaddr_* structure. struct sockaddr_storage should be used.

Test Plan

ifconfig epair create
ifconfig epair0a inet6 add 2001:db8::1 up
ndp -s 2001:db8::2 02:86:98:2e:96:0b proxy # this triggers kernel stack overflow

Diff Detail

Repository

R10 FreeBSD src repository

Lint

Automatic diff as part of commit; lint not applicable.

Unit

Automatic diff as part of commit; unit tests not applicable.

Event Timeline

takahiro.kurosawa_gmail.com created this revision.Thu, May 12, 11:24 PM

Herald added subscribers: Contributor Reviews (base), glebius, melifaro and 2 others. · View Herald TranscriptThu, May 12, 11:24 PM

takahiro.kurosawa_gmail.com requested review of this revision.Thu, May 12, 11:24 PM

Harbormaster completed remote builds in B45553: Diff 105927.Thu, May 12, 11:24 PM

takahiro.kurosawa_gmail.com added reviewers: melifaro, network.Thu, May 12, 11:29 PM

zlei.huang_gmail.com added a subscriber: zlei.huang_gmail.com.Fri, May 13, 1:51 AM

markj accepted this revision as: markj.Fri, May 13, 1:31 PM

This revision is now accepted and ready to land.Fri, May 13, 1:31 PM

Good catch!

sys/net/rtsock.c
807–808	This line is too long.

Closed by commit R10:9573cc35555e: rtsock: fix a stack overflow (authored by takahiro.kurosawa_gmail.com, committed by kp). · Explain WhyFri, May 13, 8:06 PM

This revision was automatically updated to reflect the committed changes.

kp added a commit: R10:9573cc35555e: rtsock: fix a stack overflow.

Revision Contents
Changeset List

Path

Size

sys/

net/

rtsock.c

10 lines

Diff 105965

View Options

rtsock: fix buffer overrun (sockaddr misuse)ClosedPublicActions