cvs commit: src/sys/net bpf.c bpf_filter.c
Sepherosa Ziehau
sephe at crater.dragonflybsd.org
Wed Jan 2 04:31:00 PST 2008
sephe 2008/01/02 04:30:34 PST
DragonFly src repository
Modified files:
sys/net bpf.c bpf_filter.c
Log:
Add more sanity checks in bpf_validate():
- BPF programs with no instructions or with more than BPF_MAXINSNS
instructions.
- BPF_STX and BPF_LDX|BPF_MEM instructions that have out-of-range offsets
(which could be made to fetch or store into arbitrary memory locations).
- BPF_DIV instructions with a constant 0 divisor (that's a check also done
at run time).
Submitted-by: Guy Harris <guy at alum.mit.edu>
Obtained-from:
OpenBSD (with additional comments and modification from the submitter)
Revision Changes Path
1.43 +1 -1 src/sys/net/bpf.c
1.10 +103 -25 src/sys/net/bpf_filter.c
http://www.dragonflybsd.org/cvsweb/src/sys/net/bpf.c.diff?r1=1.42&r2=1.43&f=u
http://www.dragonflybsd.org/cvsweb/src/sys/net/bpf_filter.c.diff?r1=1.9&r2=1.10&f=u
More information about the Commits
mailing list