netfilter: x_tables: make sure compat af mutex is held

Signed-off-by: Florian Westphal <fw@strlen.de> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Florian Westphal <fw@strlen.de> 2018-02-27 19:42:36 +0100
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2018-03-05 23:15:44 +0100
commit: 89370860686a54fc0642c7ae68213cc1fc6d8e04 (patch)
tree: 7ad44acd875d405c604b5f7b4f7b6a842d8d7f7b /net/netfilter/x_tables.c
parent: netfilter: compat: reject huge allocation requests (diff)
download: linux-dev-89370860686a54fc0642c7ae68213cc1fc6d8e04.tar.xz
linux-dev-89370860686a54fc0642c7ae68213cc1fc6d8e04.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/net/netfilter/x_tables.c b/net/netfilter/x_tables.c
index 33724b08b8f0..7521e8a72c06 100644
--- a/net/netfilter/x_tables.c
+++ b/net/netfilter/x_tables.c
@@ -582,6 +582,8 @@ int xt_compat_add_offset(u_int8_t af, unsigned int offset, int delta)
 {
 	struct xt_af *xp = &xt[af];
 
+	WARN_ON(!mutex_is_locked(&xt[af].compat_mutex));
+
 	if (WARN_ON(!xp->compat_tab))
 		return -ENOMEM;
 
@@ -599,6 +601,8 @@ EXPORT_SYMBOL_GPL(xt_compat_add_offset);
 
 void xt_compat_flush_offsets(u_int8_t af)
 {
+	WARN_ON(!mutex_is_locked(&xt[af].compat_mutex));
+
 	if (xt[af].compat_tab) {
 		vfree(xt[af].compat_tab);
 		xt[af].compat_tab = NULL;
@@ -630,6 +634,8 @@ int xt_compat_init_offsets(u8 af, unsigned int number)
 {
 	size_t mem;
 
+	WARN_ON(!mutex_is_locked(&xt[af].compat_mutex));
+
 	if (!number || number > (INT_MAX / sizeof(struct compat_delta)))
 		return -EINVAL;
author	Florian Westphal <fw@strlen.de>	2018-02-27 19:42:36 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2018-03-05 23:15:44 +0100
commit	89370860686a54fc0642c7ae68213cc1fc6d8e04 (patch)
tree	7ad44acd875d405c604b5f7b4f7b6a842d8d7f7b /net/netfilter/x_tables.c
parent	netfilter: compat: reject huge allocation requests (diff)
download	linux-dev-89370860686a54fc0642c7ae68213cc1fc6d8e04.tar.xz linux-dev-89370860686a54fc0642c7ae68213cc1fc6d8e04.zip