if_ovpn: reject non-UDP sockets

We must ensure that the fd provided by userspace is really for a UDP socket. If it's not we'll panic in udp_set_kernel_tunneling(). Reported by: Gert Doering <gert@greenie.muc.de> Sponsored by: Rubicon Communications, LLC ("Netgate")
2022-08-11 10:30:39 +02:00 · 2022-08-11 10:30:39 +02:00 · fd6b3bede5
commit fd6b3bede5
parent 0b6d133c08
1 changed files with 6 additions and 0 deletions
--- a/sys/net/if_ovpn.c
+++ b/sys/net/if_ovpn.c
@ -559,6 +559,12 @@ ovpn_new_peer(struct ifnet *ifp, const nvlist_t *nvl)
 		goto error_locked;
 	}

+	/* Make sure this is really a UDP socket. */
+	if (so->so_type != SOCK_DGRAM || so->so_proto->pr_type != SOCK_DGRAM) {
+		ret = EPROTOTYPE;
+		goto error_locked;
+	}
+
 	/* Must be the same socket as for other peers on this interface. */
 	if (sc->so != NULL && so != sc->so)
 		goto error_locked;