From b567ae9b366b2b2d3dafe767c3792a1497140ffc Mon Sep 17 00:00:00 2001
From: Fabian Keil <fk@fabiankeil.de>
Date: Tue, 9 Dec 2014 15:52:39 +0100
Subject: [PATCH 246/310] ggated: Check for connection_add() failures properly

Prevents a socket leak

Reported to security-officer@FreeBSD.org on 2014-12-09.

Obtained from: ElectroBSD
---
 sbin/ggate/ggated/ggated.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/sbin/ggate/ggated/ggated.c b/sbin/ggate/ggated/ggated.c
index 1fddbabd650d..f49949d510c2 100644
--- a/sbin/ggate/ggated/ggated.c
+++ b/sbin/ggate/ggated/ggated.c
@@ -918,7 +918,7 @@ handshake(struct sockaddr *from, int sfd)
 		 */
 		g_gate_log(LOG_DEBUG, "Found existing connection (token=%lu).",
 		    (unsigned long)conn->c_token);
-		if (connection_add(conn, &cinit, from, sfd) == -1) {
+		if (connection_add(conn, &cinit, from, sfd) == EEXIST) {
 			connection_remove(conn);
 			return (0);
 		}
-- 
2.37.1