Date: Fri, 27 Jul 2007 08:25:02 +0000 (UTC) From: Robert Watson <rwatson@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/netinet6 udp6_usrreq.c Message-ID: <200707270825.l6R8P2qR046591@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
rwatson 2007-07-27 08:25:02 UTC
FreeBSD src repository
Modified files:
sys/netinet6 udp6_usrreq.c
Log:
Continue effort to improve parity between UDPv4 and UDPv6: add a missing
scope security check for the UDPv6 socket credential lookup service,
allowing security policies to bound access to credential information.
While not an immediate issue for Jail, which doesn't allow use of UDPv6,
this may be relevant to other security policies that may wish to control
ident lookups.
While here, eliminate a very unlikely panic case, in which a socket in
the process of being freed is inspected by the sysctl.
Approved by: re (kensmith)
Reviewed by: bz
Revision Changes Path
1.80 +10 -6 src/sys/netinet6/udp6_usrreq.c
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200707270825.l6R8P2qR046591>