diff options
| author | Theo de Raadt <deraadt@cvs.openbsd.org> | 2009-12-11 17:50:58 +0000 |
|---|---|---|
| committer | Theo de Raadt <deraadt@cvs.openbsd.org> | 2009-12-11 17:50:58 +0000 |
| commit | 5d06c87bba398b9d5911a455d769be5f2e4d0dee (patch) | |
| tree | edc39f8b1933660ccf0ef6b5cf403ecb43803928 /sys/netinet/ip_output.c | |
| parent | c2d927686ecb58bfdbcace1ac2c2c903955eff9d (diff) | |
Two cases of IPSEC getsockopt() returning two bytes of uninitialialized
kernel stack content instead of proper information; found by Clement LECIGNE
Diffstat (limited to 'sys/netinet/ip_output.c')
| -rw-r--r-- | sys/netinet/ip_output.c | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/sys/netinet/ip_output.c b/sys/netinet/ip_output.c index f952ddd5010..68f73f978e9 100644 --- a/sys/netinet/ip_output.c +++ b/sys/netinet/ip_output.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ip_output.c,v 1.200 2009/11/27 20:05:50 guenther Exp $ */ +/* $OpenBSD: ip_output.c,v 1.201 2009/12/11 17:50:57 deraadt Exp $ */ /* $NetBSD: ip_output.c,v 1.28 1996/02/13 23:43:07 christos Exp $ */ /* @@ -1593,9 +1593,11 @@ ip_ctloutput(op, so, level, optname, mp) case IP_IPSEC_LOCAL_AUTH: if (inp->inp_ipo != NULL) ipr = inp->inp_ipo->ipo_local_auth; + opt16val = IPSP_AUTH_NONE; break; case IP_IPSEC_REMOTE_AUTH: ipr = inp->inp_ipsec_remoteauth; + opt16val = IPSP_AUTH_NONE; break; } if (ipr == NULL) |