af_key: initialize xfrm encap_oa
authorTimo Teras <timo.teras@iki.fi>
Mon, 26 Jan 2009 04:49:14 +0000 (20:49 -0800)
committerDavid S. Miller <davem@davemloft.net>
Mon, 26 Jan 2009 04:49:14 +0000 (20:49 -0800)
Currently encap_oa is left uninitialized, so it contains garbage data which
is visible to userland via Netlink. Initialize it by zeroing it out.

Signed-off-by: Timo Teras <timo.teras@iki.fi>
Acked-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: David S. Miller <davem@davemloft.net>
net/key/af_key.c

index f8bd8df5e2575a713f487a2573ba65b7cd5863b8..7dcbde3ea7d9e7afdbfd382d8775b28b7fd9ea40 100644 (file)
@@ -1285,6 +1285,7 @@ static struct xfrm_state * pfkey_msg2xfrm_state(struct net *net,
                                ext_hdrs[SADB_X_EXT_NAT_T_DPORT-1];
                        natt->encap_dport = n_port->sadb_x_nat_t_port_port;
                }
+               memset(&natt->encap_oa, 0, sizeof(natt->encap_oa));
        }
 
        err = xfrm_init_state(x);