| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <4CC01F16.2000008@trash.net> Date: Thu, 21 Oct 2010 13:08:06 +0200 From: Patrick McHardy <kaber@...sh.net> To: KOVACS Krisztian <hidden@...abit.hu> CC: netdev@...r.kernel.org, netfilter-devel@...r.kernel.org, David Miller <davem@...emloft.net> Subject: Re: [PATCH 3/3] tproxy: fix hash locking issue when using port redirection in __inet_inherit_port() Am 20.10.2010 13:21, schrieb KOVACS Krisztian: > When __inet_inherit_port() is called on a tproxy connection the wrong locks are > held for the inet_bind_bucket it is added to. __inet_inherit_port() made an > implicit assumption that the listener's port number (and thus its bind bucket). > Unfortunately, if you're using the TPROXY target to redirect skbs to a > transparent proxy that assumption is not true anymore and things break. > > This patch adds code to __inet_inherit_port() so that it can handle this case > by looking up or creating a new bind bucket for the child socket and updates > callers of __inet_inherit_port() to gracefully handle __inet_inherit_port() > failing. > > Reported by and original patch from Stephen Buck <stephen.buck@...nda.com>. > See http://marc.info/?t=128169268200001&r=1&w=2 for the original discussion. Applied, thanks. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists