Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit c8bf4d04 authored by Timo Teräs's avatar Timo Teräs Committed by David S. Miller
Browse files

xfrm_user: verify policy direction at XFRM_MSG_POLEXPIRE handler



Add missing check for policy direction verification. This is
especially important since without this xfrm_user may end up
deleting per-socket policy which is not allowed.

Signed-off-by: default avatarTimo Teras <timo.teras@iki.fi>
Acked-by: default avatarHerbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
parent 34996cb9
Loading
Loading
Loading
Loading
+4 −0
Original line number Original line Diff line number Diff line
@@ -1741,6 +1741,10 @@ static int xfrm_add_pol_expire(struct sk_buff *skb, struct nlmsghdr *nlh,
	if (err)
	if (err)
		return err;
		return err;


	err = verify_policy_dir(p->dir);
	if (err)
		return err;

	if (p->index)
	if (p->index)
		xp = xfrm_policy_byid(net, mark, type, p->dir, p->index, 0, &err);
		xp = xfrm_policy_byid(net, mark, type, p->dir, p->index, 0, &err);
	else {
	else {