diff options
| author | Alexander Bluhm <bluhm@cvs.openbsd.org> | 2009-05-18 20:37:14 +0000 |
|---|---|---|
| committer | Alexander Bluhm <bluhm@cvs.openbsd.org> | 2009-05-18 20:37:14 +0000 |
| commit | 24d31a5aef766e9feb1e419c01f3ce0cb1fce839 (patch) | |
| tree | c2e1d737c23f816292ee3db30386558a7376d3ef /sys/net/pf.c | |
| parent | a86f52df1b164dce52103854d9c0f6dcc01308e0 (diff) | |
The routing table index rtableid has type unsigned int in the routing
code. In pf rtableid == -1 means don't change the rtableid because
of this rule. So it has to be signed int there. Before the value
is passed from pf to route it is always checked to be >= 0. Change
the type to int in pf and to u_int in netinet and netinet6 to make
the checks work. Otherwise -1 may be used as an array index and
the kernel crashes.
ok henning@
Diffstat (limited to 'sys/net/pf.c')
| -rw-r--r-- | sys/net/pf.c | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/sys/net/pf.c b/sys/net/pf.c index f49d9288271..2c68a807512 100644 --- a/sys/net/pf.c +++ b/sys/net/pf.c @@ -1,4 +1,4 @@ -/* $OpenBSD: pf.c,v 1.647 2009/04/30 12:54:32 henning Exp $ */ +/* $OpenBSD: pf.c,v 1.648 2009/05/18 20:37:13 bluhm Exp $ */ /* * Copyright (c) 2001 Daniel Hartmeier @@ -154,9 +154,9 @@ void pf_send_tcp(const struct pf_rule *, sa_family_t, u_int16_t, u_int16_t, u_int32_t, u_int32_t, u_int8_t, u_int16_t, u_int16_t, u_int8_t, int, u_int16_t, struct ether_header *, struct ifnet *, - u_int); + int); void pf_send_icmp(struct mbuf *, u_int8_t, u_int8_t, - sa_family_t, struct pf_rule *, u_int); + sa_family_t, struct pf_rule *, int); void pf_detach_state(struct pf_state *); void pf_state_key_detach(struct pf_state *, int); u_int32_t pf_tcp_iss(struct pf_pdesc *); @@ -1878,7 +1878,7 @@ pf_send_tcp(const struct pf_rule *r, sa_family_t af, const struct pf_addr *saddr, const struct pf_addr *daddr, u_int16_t sport, u_int16_t dport, u_int32_t seq, u_int32_t ack, u_int8_t flags, u_int16_t win, u_int16_t mss, u_int8_t ttl, int tag, - u_int16_t rtag, struct ether_header *eh, struct ifnet *ifp, u_int rtableid) + u_int16_t rtag, struct ether_header *eh, struct ifnet *ifp, int rtableid) { struct mbuf *m; int len, tlen; @@ -2032,7 +2032,7 @@ pf_send_tcp(const struct pf_rule *r, sa_family_t af, void pf_send_icmp(struct mbuf *m, u_int8_t type, u_int8_t code, sa_family_t af, - struct pf_rule *r, u_int rtableid) + struct pf_rule *r, int rtableid) { struct mbuf *m0; |