[Bug 254623] traceroute6: ICMP6 no longer works due to Capsicum'ization: data too short (-1 bytes) from invalid
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Thu Apr 1 14:01:53 UTC 2021
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=254623
--- Comment #8 from commit-hook at FreeBSD.org ---
A commit in branch main references this bug:
URL:
https://cgit.FreeBSD.org/src/commit/?id=b8ae450f05e62a851f444edaf7db2506ff99aa37
commit b8ae450f05e62a851f444edaf7db2506ff99aa37
Author: Mark Johnston <markj at FreeBSD.org>
AuthorDate: 2021-04-01 13:58:32 +0000
Commit: Mark Johnston <markj at FreeBSD.org>
CommitDate: 2021-04-01 14:00:29 +0000
traceroute6: Fix Capsicum rights for rcvsock
- Always use distinct sockets for send and recv
- Limit rights on the recv socket
For ICMP6 we were using the same socket for both send and receive, and
we limited rights on the socket such that it's impossible to receive
anything.
PR: 254623
Diagnosed by: Zhenlei Huang <zlei.huang at gmail.com>
Reviewed by: oshogbo
MFC after: 3 days
Differential Revision: https://reviews.freebsd.org/D29523
usr.sbin/traceroute6/traceroute6.c | 9 ++++++---
1 file changed, 6 insertions(+), 3 deletions(-)
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the freebsd-net
mailing list