bpf: Verify flags in bpf_fib_lookup

Verify flags argument contains only known flags. Allows programs to probe for support as more are added. Signed-off-by: David Ahern <dsahern@gmail.com> Signed-off-by: Daniel Borkmann <daniel@iogearbox.net>
author: David Ahern <dsahern@gmail.com> 2018-05-29 11:59:13 -0700
committer: Daniel Borkmann <daniel@iogearbox.net> 2018-05-29 21:48:43 +0200
commit: 9ce64f192d161acff17c99ceec7d9ce3db9252fa (patch)
tree: 7f58b1c04639b92be5fa9ad82e91005c7df82a85 /net
parent: fa898d769b264ede3c10cc30a537316c6a946956 (diff)
download: linux-0-day-9ce64f192d161acff17c99ceec7d9ce3db9252fa.tar.gz
linux-0-day-9ce64f192d161acff17c99ceec7d9ce3db9252fa.tar.xz
1 files changed, 6 insertions, 0 deletions
diff --git a/net/core/filter.c b/net/core/filter.c
index 0ce93edefb0ed..81bd2e9fe8fc7 100644
--- a/net/core/filter.c
+++ b/net/core/filter.c
@@ -4270,6 +4270,9 @@ BPF_CALL_4(bpf_xdp_fib_lookup, struct xdp_buff *, ctx,
 	if (plen < sizeof(*params))
 		return -EINVAL;
 
+	if (flags & ~(BPF_FIB_LOOKUP_DIRECT | BPF_FIB_LOOKUP_OUTPUT))
+		return -EINVAL;
+
 	switch (params->family) {
 #if IS_ENABLED(CONFIG_INET)
 	case AF_INET:
@@ -4304,6 +4307,9 @@ BPF_CALL_4(bpf_skb_fib_lookup, struct sk_buff *, skb,
 	if (plen < sizeof(*params))
 		return -EINVAL;
 
+	if (flags & ~(BPF_FIB_LOOKUP_DIRECT | BPF_FIB_LOOKUP_OUTPUT))
+		return -EINVAL;
+
 	switch (params->family) {
 #if IS_ENABLED(CONFIG_INET)
 	case AF_INET:
author	David Ahern <dsahern@gmail.com>	2018-05-29 11:59:13 -0700
committer	Daniel Borkmann <daniel@iogearbox.net>	2018-05-29 21:48:43 +0200
commit	9ce64f192d161acff17c99ceec7d9ce3db9252fa (patch)
tree	7f58b1c04639b92be5fa9ad82e91005c7df82a85 /net
parent	fa898d769b264ede3c10cc30a537316c6a946956 (diff)
download	linux-0-day-9ce64f192d161acff17c99ceec7d9ce3db9252fa.tar.gz linux-0-day-9ce64f192d161acff17c99ceec7d9ce3db9252fa.tar.xz