From c4b43c46c906a35a302c13d4b22acc1f93e75de1 Mon Sep 17 00:00:00 2001
From: rwatson <rwatson@FreeBSD.org>
Date: Sat, 14 Apr 2007 10:35:09 +0000
Subject: Some Linux applications (ping) pass a non-NULL msg_control argument
 to sendmsg() while using a 0-length msg_controllen.  This isn't allowed in
 the FreeBSD system call ABI, so detect this case and set msg_control to NULL.
  This allows Linux ping to work.

Submitted by:	rdivacky
---
 sys/compat/linux/linux_socket.c | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/sys/compat/linux/linux_socket.c b/sys/compat/linux/linux_socket.c
index 9a90c57..553a657 100644
--- a/sys/compat/linux/linux_socket.c
+++ b/sys/compat/linux/linux_socket.c
@@ -1028,6 +1028,16 @@ linux_sendmsg(struct thread *td, struct linux_sendmsg_args *args)
 	error = copyin(PTRIN(linux_args.msg), &msg, sizeof(msg));
 	if (error)
 		return (error);
+
+	/*
+	 * Some Linux applications (ping) define a non-NULL control data
+	 * pointer, but a msg_controllen of 0, which is not allowed in the
+	 * FreeBSD system call interface.  NULL the msg_control pointer in
+	 * order to handle this case.  This should be checked, but allows the
+	 * Linux ping to work.
+	 */
+	if (msg.msg_control != NULL && msg.msg_controllen == 0)
+		msg.msg_control = NULL;
 	error = copyiniov(msg.msg_iov, msg.msg_iovlen, &iov, EMSGSIZE);
 	if (error)
 		return (error);
-- 
cgit v1.1