CVSROOT: /cvs Module name: src Changes by: bl...@cvs.openbsd.org 2022/08/22 14:35:39
Modified files:
sys/net : pf_norm.c
Log message:
Protect pf_reassemble() with pf fragment lock. When the pool limit
for fragment entries was reached, pf_create_fragment() called
pf_flush_fragments() without lock. This could result in a crash.
Let PF_FRAG_LOCK() cover the whole pf_reassemble() function as
pf_nfrents++ was also missing the lock.
crash found and fix tested by Hrvoje Popovski; OK sashan@
