git.baikalelectronics.ru Git - kernel.git/commit

author	Christoph Schulz <develop@kristov.de>
	Wed, 16 Jul 2014 20:10:29 +0000 (22:10 +0200)
committer	David S. Miller <davem@davemloft.net>
	Thu, 17 Jul 2014 06:42:06 +0000 (23:42 -0700)
commit	dcdaf67fcc5233d7b8c64413af96e9e8c159e7c6
tree	629a02ffbc4e6568d6989b9076b42cf360c5c2c3	tree \| snapshot
parent	62103cc4dde3d5eb0f63693da0022d4956e2a2fd	commit \| diff

net: ppp: fix creating PPP pass and active filters

Commit 04dc1e52881b3d8ef0112fb3e4833ded95f4c777 ("net: ppp: use
sk_unattached_filter api") inadvertently changed the logic when setting
PPP pass and active filters. This applies to both the generic PPP subsystem
implemented by drivers/net/ppp/ppp_generic.c and the ISDN PPP subsystem
implemented by drivers/isdn/i4l/isdn_ppp.c. The original code in ppp_ioctl()
(or isdn_ppp_ioctl(), resp.) handling PPPIOCSPASS and PPPIOCSACTIVE allowed to
remove a pass/active filter previously set by using a filter of length zero.
However, with the new code this is not possible anymore as this case is not
explicitly checked for, which leads to passing NULL as a filter to
sk_unattached_filter_create(). This results in returning EINVAL to the caller.

Additionally, the variables ppp->pass_filter and ppp->active_filter (or
is->pass_filter and is->active_filter, resp.) are not reset to NULL, although
the filters they point to may have been destroyed by
sk_unattached_filter_destroy(), so in this EINVAL case dangling pointers are
left behind (provided the pointers were previously non-NULL).

This patch corrects both problems by checking whether the filter passed is
empty or non-empty, and prevents sk_unattached_filter_create() from being
called in the first case. Moreover, the pointers are always reset to NULL
as soon as sk_unattached_filter_destroy() returns.

Signed-off-by: Christoph Schulz <develop@kristov.de>
Signed-off-by: David S. Miller <davem@davemloft.net>

drivers/isdn/i4l/isdn_ppp.c		diff \| blob \| history
drivers/net/ppp/ppp_generic.c		diff \| blob \| history