Re: [PATCH net-next 2/2] net: ip6mr: add RTM_GETROUTE netlink op

[PATCH net-next 0/2] ip6mr: implement RTM_GETROUTE for single entry · David Lamparter <hidden> · 2022-06-30
[PATCH 1/2] ipv6: make rtm_ipv6_policy available · David Lamparter <hidden> · 2022-06-30
[PATCH 2/2] net: ip6mr: add RTM_GETROUTE netlink op · David Lamparter <hidden> · 2022-06-30
Re: [PATCH net-next 0/2] ip6mr: implement RTM_GETROUTE for single entry · Jakub Kicinski <kuba@kernel.org> · 2022-07-01
[PATCH resend net-next 0/2] ip6mr: implement RTM_GETROUTE for single entry · David Lamparter <hidden> · 2022-07-01
[PATCH net-next 1/2] ipv6: make rtm_ipv6_policy available · David Lamparter <hidden> · 2022-07-01
[PATCH net-next 2/2] net: ip6mr: add RTM_GETROUTE netlink op · David Lamparter <hidden> · 2022-07-01
Re: [PATCH net-next 2/2] net: ip6mr: add RTM_GETROUTE netlink op · David Ahern <dsahern@kernel.org> · 2022-07-03
Re: [PATCH net-next 2/2] net: ip6mr: add RTM_GETROUTE netlink op · David Lamparter <hidden> · 2022-07-04
[PATCH net-next v2] net: ip6mr: add RTM_GETROUTE netlink op · David Lamparter <hidden> · 2022-07-04
Re: [PATCH net-next v2] net: ip6mr: add RTM_GETROUTE netlink op · Nikolay Aleksandrov <razor@blackwall.org> · 2022-07-04
Re: [PATCH net-next v2] net: ip6mr: add RTM_GETROUTE netlink op · David Lamparter <hidden> · 2022-07-04
Re: [PATCH net-next v2] net: ip6mr: add RTM_GETROUTE netlink op · Nikolay Aleksandrov <razor@blackwall.org> · 2022-07-04
[PATCH net-next v3] net: ip6mr: add RTM_GETROUTE netlink op · David Lamparter <hidden> · 2022-07-04
Re: [PATCH net-next v3] net: ip6mr: add RTM_GETROUTE netlink op · Jakub Kicinski <kuba@kernel.org> · 2022-07-05
Re: [PATCH net-next v3] net: ip6mr: add RTM_GETROUTE netlink op · David Lamparter <hidden> · 2022-07-06
Re: [PATCH net-next v2] net: ip6mr: add RTM_GETROUTE netlink op · kernel test robot <hidden> · 2022-07-05

From: David Ahern <dsahern@kernel.org>
Date: 2022-07-03 19:08:23

On 7/1/22 1:58 AM, David Lamparter wrote:

quoted hunk ↗ jump to hunk

@@ -2510,6 +2512,121 @@ static void mrt6msg_netlink_event(const struct mr_table *mrt, struct sk_buff *pk
 	rtnl_set_sk_err(net, RTNLGRP_IPV6_MROUTE_R, -ENOBUFS);
 }
 
+static int ip6mr_rtm_valid_getroute_req(struct sk_buff *skb,
+					const struct nlmsghdr *nlh,
+					struct nlattr **tb,
+					struct netlink_ext_ack *extack)
+{
+	struct rtmsg *rtm;
+	int i, err;
+
+	if (nlh->nlmsg_len < nlmsg_msg_size(sizeof(*rtm))) {
+		NL_SET_ERR_MSG(extack, "ipv6: Invalid header for multicast route get request");
+		return -EINVAL;
+	}
+
+	if (!netlink_strict_get_check(skb))
+		return nlmsg_parse_deprecated(nlh, sizeof(*rtm), tb, RTA_MAX,
+					      rtm_ipv6_policy, extack);

Since this is new code, it always operates in strict mode.

+
+	rtm = nlmsg_data(nlh);
+	if ((rtm->rtm_src_len && rtm->rtm_src_len != 128) ||
+	    (rtm->rtm_dst_len && rtm->rtm_dst_len != 128) ||
+	    rtm->rtm_tos || rtm->rtm_table || rtm->rtm_protocol ||
+	    rtm->rtm_scope || rtm->rtm_type || rtm->rtm_flags) {
+		NL_SET_ERR_MSG(extack, "ipv6: Invalid values in header for multicast route get request");
+		return -EINVAL;
+	}
+
+	err = nlmsg_parse_deprecated_strict(nlh, sizeof(*rtm), tb, RTA_MAX,
+					    rtm_ipv6_policy, extack);

nlmsg_parse here.

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help