netinet: Explicitly disallow connections to the unspecified address
ClosedPublic
Actions

Authored by markj on Tue, Aug 27, 1:52 PM.

Details

Reviewers

allanjude
emaste
zlei

Group Reviewers

network

Commits

rG0c605af3f9d9: netinet: Explicitly disallow connections to the unspecified address

Summary

If the V_connect_ifaddr_wild sysctl says that we shouldn't infer a
destination address, return an error. Otherwise it's possible for use
of an unspecified foreign address to trigger a subsequent assertion
failure, for example in in_pcblookup_hash_locked().

Reported by: Shawn Webb <shawn.webb@hardenedbsd.org>

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

markj created this revision.Tue, Aug 27, 1:52 PM

Herald added subscribers: glebius, melifaro, ae, imp. · View Herald TranscriptTue, Aug 27, 1:52 PM

markj requested review of this revision.Tue, Aug 27, 1:52 PM

Harbormaster completed remote builds in B59197: Diff 142511.Tue, Aug 27, 1:52 PM

allanjude accepted this revision.Tue, Aug 27, 4:02 PM

This revision is now accepted and ready to land.Tue, Aug 27, 4:02 PM

What if V_connect_inaddr_wild is true but also CK_STAILQ_EMPTY(&V_in_ifaddrhead)?
I guess ENETUNREACH is sensible in that case as well.

In D46454#1058928, @emaste wrote:

What if V_connect_inaddr_wild is true but also CK_STAILQ_EMPTY(&V_in_ifaddrhead)?
I guess ENETUNREACH is sensible in that case as well.

Yes, that was intentional. This is really about ensuring that the unspecified address, which is used as a sentinel in some places, doesn't get propagated further down into the inpcb layer.

emaste accepted this revision.Tue, Aug 27, 8:43 PM