git: fa21fc599d94 - stable/13 - pf: Handle errors returned by pf_killstates()
Kristof Provost
kp at FreeBSD.org
Fri Jul 16 11:53:56 UTC 2021
The branch stable/13 has been updated by kp:
URL: https://cgit.FreeBSD.org/src/commit/?id=fa21fc599d948ce822adf471ba876dfb228a9ec9
commit fa21fc599d948ce822adf471ba876dfb228a9ec9
Author: Kristof Provost <kp at FreeBSD.org>
AuthorDate: 2021-07-05 12:21:03 +0000
Commit: Kristof Provost <kp at FreeBSD.org>
CommitDate: 2021-07-16 09:08:27 +0000
pf: Handle errors returned by pf_killstates()
Happily this wasn't a real bug, because pf_killstates() never fails, but
we should check the return value anyway, in case it does ever start
returning errors.
Reported by: clang --analyze
MFC after: 1 week
Sponsored by: Rubicon Communications, LLC ("Netgate")
(cherry picked from commit fa96701c8abbc29aad7f8f8d6b823bd7f89c6c15)
---
sys/netpfil/pf/pf_ioctl.c | 2 ++
1 file changed, 2 insertions(+)
diff --git a/sys/netpfil/pf/pf_ioctl.c b/sys/netpfil/pf/pf_ioctl.c
index 694134c6c663..68ccb741710a 100644
--- a/sys/netpfil/pf/pf_ioctl.c
+++ b/sys/netpfil/pf/pf_ioctl.c
@@ -4888,6 +4888,8 @@ pf_killstates_nv(struct pfioc_nv *nv)
ERROUT(error);
error = pf_killstates(&kill, &killed);
+ if (error)
+ ERROUT(error);
free(nvlpacked, M_NVLIST);
nvlpacked = NULL;
More information about the dev-commits-src-branches
mailing list