ipv6: Reject routes configurations that specify dsfield (tos)

The ->rtm_tos option is normally used to route packets based on both the destination address and the DS field. However it's ignored for IPv6 routes. Setting ->rtm_tos for IPv6 is thus invalid as the route is going to work only on the destination address anyway, so it won't behave as specified. Suggested-by: Toke Høiland-Jørgensen <toke@redhat.com> Signed-off-by: Guillaume Nault <gnault@redhat.com> Reviewed-by: David Ahern <dsahern@kernel.org> Reviewed-by: Shuah Khan <skhan@linuxfoundation.org> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Guillaume Nault <gnault@redhat.com> 2022-02-10 16:08:08 +0100
committer: David S. Miller <davem@davemloft.net> 2022-02-11 11:18:59 +0000
commit: b9605161e7be40fdd0fa0685b5c534e6201ac04b (patch)
tree: bb661f706cfb2ab9f36f12a0e72ff2e57578954d /net
parent: 12a8f37fd2d3eb5e6d1b2c50e9ed63dd60b43625 (diff)
download: linux-b9605161e7be40fdd0fa0685b5c534e6201ac04b.tar.bz2
1 files changed, 6 insertions, 0 deletions
diff --git a/net/ipv6/route.c b/net/ipv6/route.c
index f4884cda13b9..dd98a11fbdb6 100644
--- a/net/ipv6/route.c
+++ b/net/ipv6/route.c
@@ -5009,6 +5009,12 @@ static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh,
 	err = -EINVAL;
 	rtm = nlmsg_data(nlh);
 
+	if (rtm->rtm_tos) {
+		NL_SET_ERR_MSG(extack,
+			       "Invalid dsfield (tos): option not available for IPv6");
+		goto errout;
+	}
+
 	*cfg = (struct fib6_config){
 		.fc_table = rtm->rtm_table,
 		.fc_dst_len = rtm->rtm_dst_len,
author	Guillaume Nault <gnault@redhat.com>	2022-02-10 16:08:08 +0100
committer	David S. Miller <davem@davemloft.net>	2022-02-11 11:18:59 +0000
commit	b9605161e7be40fdd0fa0685b5c534e6201ac04b (patch)
tree	bb661f706cfb2ab9f36f12a0e72ff2e57578954d /net
parent	12a8f37fd2d3eb5e6d1b2c50e9ed63dd60b43625 (diff)
download	linux-b9605161e7be40fdd0fa0685b5c534e6201ac04b.tar.bz2