This is the mail archive of the
ecos-patches@sourceware.org
mailing list for the eCos project.
Re: Network TCP Handler: stale socket disposal
- From: John Mills <johnmills at speakeasy dot net>
- To: eCos RTOS Patches <ecos-patches at ecos dot sourceware dot org>
- Cc: Andrew Lunn <andrew at lunn dot ch>, Gary Thomas <gary at mlbassoc dot com>
- Date: Thu, 30 Aug 2007 08:51:59 -0500 (EST)
- Subject: Re: Network TCP Handler: stale socket disposal
- Reply-to: John Mills <john dot m dot mills at alum dot mit dot edu>
Andrew -
On Wed, 29 Aug 2007, Andrew Lunn wrote:
> > Also, it may be the case that this
> > issue has been solved in the FreeBSD sources.
>
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/kern/uipc_socket.c#rev1.174
>
> Looks like there are a few race conditions......
What would you expect as consequences of closing a socket that remained on
the 'accept' queue?
I am fixing a specific, observed vulnerability in a product with limited
network functionality, a vulnerability triggered by some broadly used
administrative tools. I would certainly like to know more about related
hazards that may bite me.
Thanks.
John Mills
AirDefense, Inc.
Alpharetta, GA