diff options
author | Martin Josefsson <gandalf@wlug.westbo.se> | 2006-11-28 20:35:08 -0500 |
---|---|---|
committer | David S. Miller <davem@sunset.davemloft.net> | 2006-12-03 00:31:10 -0500 |
commit | ae5718fb3dd0a11a4c9a061bf86417d52d58a6b3 (patch) | |
tree | 18d070424f6d2d74ee785c24d8f90744d61d3978 | |
parent | 605dcad6c85226e6d43387917b329d65b95cef39 (diff) |
[NETFILTER]: nf_conntrack: more sanity checks in protocol registration/unregistration
Add some more sanity checks when registering/unregistering l3/l4 protocols.
Signed-off-by: Martin Josefsson <gandalf@wlug.westbo.se>
Signed-off-by: Patrick McHardy <kaber@trash.net>
-rw-r--r-- | include/net/netfilter/nf_conntrack_l3proto.h | 2 | ||||
-rw-r--r-- | include/net/netfilter/nf_conntrack_l4proto.h | 2 | ||||
-rw-r--r-- | net/netfilter/nf_conntrack_core.c | 2 | ||||
-rw-r--r-- | net/netfilter/nf_conntrack_proto.c | 55 |
4 files changed, 52 insertions, 9 deletions
diff --git a/include/net/netfilter/nf_conntrack_l3proto.h b/include/net/netfilter/nf_conntrack_l3proto.h index ffe23a1e0b97..11b4b29bfab1 100644 --- a/include/net/netfilter/nf_conntrack_l3proto.h +++ b/include/net/netfilter/nf_conntrack_l3proto.h | |||
@@ -86,7 +86,7 @@ extern struct nf_conntrack_l3proto *nf_ct_l3protos[AF_MAX]; | |||
86 | 86 | ||
87 | /* Protocol registration. */ | 87 | /* Protocol registration. */ |
88 | extern int nf_conntrack_l3proto_register(struct nf_conntrack_l3proto *proto); | 88 | extern int nf_conntrack_l3proto_register(struct nf_conntrack_l3proto *proto); |
89 | extern void nf_conntrack_l3proto_unregister(struct nf_conntrack_l3proto *proto); | 89 | extern int nf_conntrack_l3proto_unregister(struct nf_conntrack_l3proto *proto); |
90 | 90 | ||
91 | extern struct nf_conntrack_l3proto * | 91 | extern struct nf_conntrack_l3proto * |
92 | nf_ct_l3proto_find_get(u_int16_t l3proto); | 92 | nf_ct_l3proto_find_get(u_int16_t l3proto); |
diff --git a/include/net/netfilter/nf_conntrack_l4proto.h b/include/net/netfilter/nf_conntrack_l4proto.h index 0c6babd54396..5193e4857b1b 100644 --- a/include/net/netfilter/nf_conntrack_l4proto.h +++ b/include/net/netfilter/nf_conntrack_l4proto.h | |||
@@ -102,7 +102,7 @@ extern void nf_ct_l4proto_put(struct nf_conntrack_l4proto *p); | |||
102 | 102 | ||
103 | /* Protocol registration. */ | 103 | /* Protocol registration. */ |
104 | extern int nf_conntrack_l4proto_register(struct nf_conntrack_l4proto *proto); | 104 | extern int nf_conntrack_l4proto_register(struct nf_conntrack_l4proto *proto); |
105 | extern void nf_conntrack_l4proto_unregister(struct nf_conntrack_l4proto *proto); | 105 | extern int nf_conntrack_l4proto_unregister(struct nf_conntrack_l4proto *proto); |
106 | 106 | ||
107 | /* Generic netlink helpers */ | 107 | /* Generic netlink helpers */ |
108 | extern int nf_ct_port_tuple_to_nfattr(struct sk_buff *skb, | 108 | extern int nf_ct_port_tuple_to_nfattr(struct sk_buff *skb, |
diff --git a/net/netfilter/nf_conntrack_core.c b/net/netfilter/nf_conntrack_core.c index 441a647b7847..73615d32a80c 100644 --- a/net/netfilter/nf_conntrack_core.c +++ b/net/netfilter/nf_conntrack_core.c | |||
@@ -1198,7 +1198,7 @@ int __init nf_conntrack_init(void) | |||
1198 | 1198 | ||
1199 | /* Don't NEED lock here, but good form anyway. */ | 1199 | /* Don't NEED lock here, but good form anyway. */ |
1200 | write_lock_bh(&nf_conntrack_lock); | 1200 | write_lock_bh(&nf_conntrack_lock); |
1201 | for (i = 0; i < PF_MAX; i++) | 1201 | for (i = 0; i < AF_MAX; i++) |
1202 | nf_ct_l3protos[i] = &nf_conntrack_l3proto_generic; | 1202 | nf_ct_l3protos[i] = &nf_conntrack_l3proto_generic; |
1203 | write_unlock_bh(&nf_conntrack_lock); | 1203 | write_unlock_bh(&nf_conntrack_lock); |
1204 | 1204 | ||
diff --git a/net/netfilter/nf_conntrack_proto.c b/net/netfilter/nf_conntrack_proto.c index 330b9acc62d8..a6a3b1ddd00d 100644 --- a/net/netfilter/nf_conntrack_proto.c +++ b/net/netfilter/nf_conntrack_proto.c | |||
@@ -28,7 +28,7 @@ | |||
28 | #include <net/netfilter/nf_conntrack_core.h> | 28 | #include <net/netfilter/nf_conntrack_core.h> |
29 | 29 | ||
30 | struct nf_conntrack_l4proto **nf_ct_protos[PF_MAX] __read_mostly; | 30 | struct nf_conntrack_l4proto **nf_ct_protos[PF_MAX] __read_mostly; |
31 | struct nf_conntrack_l3proto *nf_ct_l3protos[PF_MAX] __read_mostly; | 31 | struct nf_conntrack_l3proto *nf_ct_l3protos[AF_MAX] __read_mostly; |
32 | 32 | ||
33 | struct nf_conntrack_l4proto * | 33 | struct nf_conntrack_l4proto * |
34 | __nf_ct_l4proto_find(u_int16_t l3proto, u_int8_t l4proto) | 34 | __nf_ct_l4proto_find(u_int16_t l3proto, u_int8_t l4proto) |
@@ -128,21 +128,40 @@ int nf_conntrack_l3proto_register(struct nf_conntrack_l3proto *proto) | |||
128 | { | 128 | { |
129 | int ret = 0; | 129 | int ret = 0; |
130 | 130 | ||
131 | if (proto->l3proto >= AF_MAX) { | ||
132 | ret = -EBUSY; | ||
133 | goto out; | ||
134 | } | ||
135 | |||
131 | write_lock_bh(&nf_conntrack_lock); | 136 | write_lock_bh(&nf_conntrack_lock); |
132 | if (nf_ct_l3protos[proto->l3proto] != &nf_conntrack_l3proto_generic) { | 137 | if (nf_ct_l3protos[proto->l3proto] != &nf_conntrack_l3proto_generic) { |
133 | ret = -EBUSY; | 138 | ret = -EBUSY; |
134 | goto out; | 139 | goto out_unlock; |
135 | } | 140 | } |
136 | nf_ct_l3protos[proto->l3proto] = proto; | 141 | nf_ct_l3protos[proto->l3proto] = proto; |
137 | out: | ||
138 | write_unlock_bh(&nf_conntrack_lock); | ||
139 | 142 | ||
143 | out_unlock: | ||
144 | write_unlock_bh(&nf_conntrack_lock); | ||
145 | out: | ||
140 | return ret; | 146 | return ret; |
141 | } | 147 | } |
142 | 148 | ||
143 | void nf_conntrack_l3proto_unregister(struct nf_conntrack_l3proto *proto) | 149 | int nf_conntrack_l3proto_unregister(struct nf_conntrack_l3proto *proto) |
144 | { | 150 | { |
151 | int ret = 0; | ||
152 | |||
153 | if (proto->l3proto >= AF_MAX) { | ||
154 | ret = -EBUSY; | ||
155 | goto out; | ||
156 | } | ||
157 | |||
145 | write_lock_bh(&nf_conntrack_lock); | 158 | write_lock_bh(&nf_conntrack_lock); |
159 | if (nf_ct_l3protos[proto->l3proto] != proto) { | ||
160 | write_unlock_bh(&nf_conntrack_lock); | ||
161 | ret = -EBUSY; | ||
162 | goto out; | ||
163 | } | ||
164 | |||
146 | nf_ct_l3protos[proto->l3proto] = &nf_conntrack_l3proto_generic; | 165 | nf_ct_l3protos[proto->l3proto] = &nf_conntrack_l3proto_generic; |
147 | write_unlock_bh(&nf_conntrack_lock); | 166 | write_unlock_bh(&nf_conntrack_lock); |
148 | 167 | ||
@@ -151,6 +170,9 @@ void nf_conntrack_l3proto_unregister(struct nf_conntrack_l3proto *proto) | |||
151 | 170 | ||
152 | /* Remove all contrack entries for this protocol */ | 171 | /* Remove all contrack entries for this protocol */ |
153 | nf_ct_iterate_cleanup(kill_l3proto, proto); | 172 | nf_ct_iterate_cleanup(kill_l3proto, proto); |
173 | |||
174 | out: | ||
175 | return ret; | ||
154 | } | 176 | } |
155 | 177 | ||
156 | /* FIXME: Allow NULL functions and sub in pointers to generic for | 178 | /* FIXME: Allow NULL functions and sub in pointers to generic for |
@@ -159,6 +181,11 @@ int nf_conntrack_l4proto_register(struct nf_conntrack_l4proto *l4proto) | |||
159 | { | 181 | { |
160 | int ret = 0; | 182 | int ret = 0; |
161 | 183 | ||
184 | if (l4proto->l3proto >= PF_MAX) { | ||
185 | ret = -EBUSY; | ||
186 | goto out; | ||
187 | } | ||
188 | |||
162 | retry: | 189 | retry: |
163 | write_lock_bh(&nf_conntrack_lock); | 190 | write_lock_bh(&nf_conntrack_lock); |
164 | if (nf_ct_protos[l4proto->l3proto]) { | 191 | if (nf_ct_protos[l4proto->l3proto]) { |
@@ -210,9 +237,22 @@ out: | |||
210 | return ret; | 237 | return ret; |
211 | } | 238 | } |
212 | 239 | ||
213 | void nf_conntrack_l4proto_unregister(struct nf_conntrack_l4proto *l4proto) | 240 | int nf_conntrack_l4proto_unregister(struct nf_conntrack_l4proto *l4proto) |
214 | { | 241 | { |
242 | int ret = 0; | ||
243 | |||
244 | if (l4proto->l3proto >= PF_MAX) { | ||
245 | ret = -EBUSY; | ||
246 | goto out; | ||
247 | } | ||
248 | |||
215 | write_lock_bh(&nf_conntrack_lock); | 249 | write_lock_bh(&nf_conntrack_lock); |
250 | if (nf_ct_protos[l4proto->l3proto][l4proto->l4proto] | ||
251 | != l4proto) { | ||
252 | write_unlock_bh(&nf_conntrack_lock); | ||
253 | ret = -EBUSY; | ||
254 | goto out; | ||
255 | } | ||
216 | nf_ct_protos[l4proto->l3proto][l4proto->l4proto] | 256 | nf_ct_protos[l4proto->l3proto][l4proto->l4proto] |
217 | = &nf_conntrack_l4proto_generic; | 257 | = &nf_conntrack_l4proto_generic; |
218 | write_unlock_bh(&nf_conntrack_lock); | 258 | write_unlock_bh(&nf_conntrack_lock); |
@@ -222,4 +262,7 @@ void nf_conntrack_l4proto_unregister(struct nf_conntrack_l4proto *l4proto) | |||
222 | 262 | ||
223 | /* Remove all contrack entries for this protocol */ | 263 | /* Remove all contrack entries for this protocol */ |
224 | nf_ct_iterate_cleanup(kill_l4proto, l4proto); | 264 | nf_ct_iterate_cleanup(kill_l4proto, l4proto); |
265 | |||
266 | out: | ||
267 | return ret; | ||
225 | } | 268 | } |