Page MenuHomeFreeBSD
Files F107558982

D31890.diff
No OneTemporary
Actions

D31890.diff
View Options

diff --git a/sys/netipsec/ipsec_input.c b/sys/netipsec/ipsec_input.c
--- a/sys/netipsec/ipsec_input.c
+++ b/sys/netipsec/ipsec_input.c
@@ -276,6 +276,7 @@
struct icmp *icp;
struct ip *ip = v;
uint32_t pmtu, spi;
+ uint8_t proto;
if (code != PRC_MSGSIZE || ip == NULL)
return (EINVAL);
@@ -289,8 +290,13 @@
if (pmtu < V_ip4_ipsec_min_pmtu)
return (EINVAL);
+ proto = ip->ip_p;
+ if (proto != IPPROTO_ESP && proto != IPPROTO_AH &&
+ proto != IPPROTO_IPCOMP)
+ return (EINVAL);
+
memcpy(&spi, (caddr_t)ip + (ip->ip_hl << 2), sizeof(spi));
- sav = key_allocsa((union sockaddr_union *)sa, ip->ip_p, spi);
+ sav = key_allocsa((union sockaddr_union *)sa, proto, spi);
if (sav == NULL)
return (ENOENT);

File Metadata

Mime Type
text/plain
Expires
Thu, Jan 16, 9:50 PM (20 h, 39 m)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
15829560
Default Alt Text
D31890.diff (730 B)

Event Timeline