projects / GitHub / LineageOS / android_kernel_motorola_exynos9610.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e5c0bd1) | patch
net_sched: fix a NULL pointer deref in ipt action
authorCong Wang <xiyou.wangcong@gmail.com>
Sun, 25 Aug 2019 17:01:32 +0000 (10:01 -0700)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Tue, 10 Sep 2019 09:32:20 +0000 (10:32 +0100)
commit9fa2ddc1b7b3507b0e23f0943dd06b59ef7ad499
tree773b3eb5fe496d839e27e5595028ac5160ce9dedtree | snapshot (tar.gz zip)
parente5c0bd167fa1ce75c464065029a272e291a32cffcommit | diff
net_sched: fix a NULL pointer deref in ipt action

[ Upstream commit 981471bd3abf4d572097645d765391533aac327d ]

The net pointer in struct xt_tgdtor_param is not explicitly
initialized therefore is still NULL when dereferencing it.
So we have to find a way to pass the correct net pointer to
ipt_destroy_target().

The best way I find is just saving the net pointer inside the per
netns struct tcf_idrinfo, which could make this patch smaller.

Fixes: 0c66dc1ea3f0 ("netfilter: conntrack: register hooks in netns when needed by ruleset")
Reported-and-tested-by: itugrok@yahoo.com
Cc: Jamal Hadi Salim <jhs@mojatatu.com>
Cc: Jiri Pirko <jiri@resnulli.us>
Signed-off-by: Cong Wang <xiyou.wangcong@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
17 files changed:
include/net/act_api.h diff | blob | blame | history
net/sched/act_bpf.c diff | blob | blame | history
net/sched/act_connmark.c diff | blob | blame | history
net/sched/act_csum.c diff | blob | blame | history
net/sched/act_gact.c diff | blob | blame | history
net/sched/act_ife.c diff | blob | blame | history
net/sched/act_ipt.c diff | blob | blame | history
net/sched/act_mirred.c diff | blob | blame | history
net/sched/act_nat.c diff | blob | blame | history
net/sched/act_pedit.c diff | blob | blame | history
net/sched/act_police.c diff | blob | blame | history
net/sched/act_sample.c diff | blob | blame | history
net/sched/act_simple.c diff | blob | blame | history
net/sched/act_skbedit.c diff | blob | blame | history
net/sched/act_skbmod.c diff | blob | blame | history
net/sched/act_tunnel_key.c diff | blob | blame | history
net/sched/act_vlan.c diff | blob | blame | history