On Fri, 3 Mar 2023 10:52:15 +0000 liujian (CE) wrote:
> When I was working on CVE-2023-0461, I found the below backport commit in stable-4.19.x maybe something wrong?
>
> 755193f2523c ("net/ulp: prevent ULP without clone op from entering the LISTEN status")
>
> 1. err = -EADDRINUSE in inet_csk_listen_start() was removed. But it
> is the error code when get_port() fails.
I think you're right, we should add setting the err back.
> 2. The change in __tcp_set_ulp() should not be discarded?
That part should be fine, all ULPs in 4.19 (i.e. TLS) should fail
the ->init() call if sk_state != ESTABLISHED.
