vti6: better validate user provided tunnel names

author Eric Dumazet <edumazet@google.com>

Thu, 5 Apr 2018 13:39:31 +0000 (06:39 -0700)

committer David S. Miller <davem@davemloft.net>

Thu, 5 Apr 2018 19:16:15 +0000 (15:16 -0400)
author Eric Dumazet <edumazet@google.com>
Thu, 5 Apr 2018 13:39:31 +0000 (06:39 -0700)
committer David S. Miller <davem@davemloft.net>
Thu, 5 Apr 2018 19:16:15 +0000 (15:16 -0400)
diff --git a/net/ipv6/ip6_vti.c b/net/ipv6/ip6_vti.c

index 6ebb2e8..c214ffe 100644 (file)
--- a/net/ipv6/ip6_vti.c
+++ b/net/ipv6/ip6_vti.c
@@ -212,10 +212,13 @@ static struct ip6_tnl *vti6_tnl_create(struct net *net, struct __ip6_tnl_parm *p
         char name[IFNAMSIZ];
         int err;
  
-       if (p->name[0])
+       if (p->name[0]) {
+               if (!dev_valid_name(p->name))
+                       goto failed;
                 strlcpy(name, p->name, IFNAMSIZ);
-       else
+       } else {
                 sprintf(name, "ip6_vti%%d");
+       }
  
         dev = alloc_netdev(sizeof(*t), name, NET_NAME_UNKNOWN, vti6_dev_setup);
         if (!dev)
author	Eric Dumazet <edumazet@google.com>
	Thu, 5 Apr 2018 13:39:31 +0000 (06:39 -0700)
committer	David S. Miller <davem@davemloft.net>
	Thu, 5 Apr 2018 19:16:15 +0000 (15:16 -0400)