tools: hv: Netlink source address validation allows DoS

author Tomas Hozza <thozza@redhat.com>

Thu, 8 Nov 2012 09:53:29 +0000 (10:53 +0100)

committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Thu, 15 Nov 2012 23:38:34 +0000 (15:38 -0800)
author Tomas Hozza <thozza@redhat.com>
Thu, 8 Nov 2012 09:53:29 +0000 (10:53 +0100)
committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Thu, 15 Nov 2012 23:38:34 +0000 (15:38 -0800)
diff --git a/tools/hv/hv_kvp_daemon.c b/tools/hv/hv_kvp_daemon.c

index 13c2a142331defeb539e40b9fe4d942f66c3aa4a..c1d910243d49abe6012595d50227648873994ed8 100644 (file)
--- a/tools/hv/hv_kvp_daemon.c
+++ b/tools/hv/hv_kvp_daemon.c
@@ -1486,13 +1486,19 @@ int main(void)
                 len = recvfrom(fd, kvp_recv_buffer, sizeof(kvp_recv_buffer), 0,
                                 addr_p, &addr_l);
  
-               if (len < 0 || addr.nl_pid) {
+               if (len < 0) {
                         syslog(LOG_ERR, "recvfrom failed; pid:%u error:%d %s",
                                         addr.nl_pid, errno, strerror(errno));
                         close(fd);
                         return -1;
                 }
  
+               if (addr.nl_pid) {
+                       syslog(LOG_WARNING, "Received packet from untrusted pid:%u",
+                                       addr.nl_pid);
+                       continue;
+               }
+
                 incoming_msg = (struct nlmsghdr *)kvp_recv_buffer;
                 incoming_cn_msg = (struct cn_msg *)NLMSG_DATA(incoming_msg);
                 hv_msg = (struct hv_kvp_msg *)incoming_cn_msg->data;
author	Tomas Hozza <thozza@redhat.com>
	Thu, 8 Nov 2012 09:53:29 +0000 (10:53 +0100)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 15 Nov 2012 23:38:34 +0000 (15:38 -0800)