From 8d378dbe9aaf5fc0e0e8ad499637ef663f1a29e7 Mon Sep 17 00:00:00 2001
From: Fabian Keil <fk@fabiankeil.de>
Date: Tue, 9 Dec 2014 15:52:39 +0100
Subject: [PATCH 291/325] ggated: Check for connection_add() failures properly

Prevents a socket leak

Reported to security-officer@FreeBSD.org on 2014-12-09.

Obtained from: ElectroBSD
---
 sbin/ggate/ggated/ggated.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/sbin/ggate/ggated/ggated.c b/sbin/ggate/ggated/ggated.c
index ae5308e7af34..769f76e1d788 100644
--- a/sbin/ggate/ggated/ggated.c
+++ b/sbin/ggate/ggated/ggated.c
@@ -905,7 +905,7 @@ handshake(struct sockaddr *from, int sfd)
 		 */
 		g_gate_log(LOG_DEBUG, "Found existing connection (token=%lu).",
 		    (unsigned long)conn->c_token);
-		if (connection_add(conn, &cinit, from, sfd) == -1) {
+		if (connection_add(conn, &cinit, from, sfd) == EEXIST) {
 			connection_remove(conn);
 			return (0);
 		}
-- 
2.32.0