ipv6: drop frames with attached skb->sk in forwarding

[ Upstream commit 9ef2e965e55481a52d6d91ce61977a27836268d3 ] This is a clone of commit 2ab957492d13b ("ip_forward: Drop frames with attached skb->sk") for ipv6. This commit has exactly the same reasons as the above mentioned commit, namely to prevent panics during netfilter reload or a misconfigured stack. Signed-off-by: Hannes Frederic Sowa <hannes@stressinduktion.org> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Sasha Levin <sasha.levin@oracle.com>
author: Hannes Frederic Sowa <hannes@stressinduktion.org> 2015-10-08 18:19:53 +0200
committer: Sasha Levin <sasha.levin@oracle.com> 2016-03-14 17:03:05 -0400
commit: b014bae072a1dad1767c5c6e7e7b480165685c3e (patch)
tree: bf23bfb5cfb2fb6b84556b5791370b46938456ca
parent: b5c41530ef442dba667c4d964c722e8157f7da72 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/net/ipv6/ip6_output.c b/net/ipv6/ip6_output.c
index 36b9ac48b8fb..06bf4010d3ed 100644
--- a/net/ipv6/ip6_output.c
+++ b/net/ipv6/ip6_output.c
@@ -376,6 +376,9 @@ int ip6_forward(struct sk_buff *skb)
 	if (skb->pkt_type != PACKET_HOST)
 		goto drop;
 
+	if (unlikely(skb->sk))
+		goto drop;
+
 	if (skb_warn_if_lro(skb))
 		goto drop;
author	Hannes Frederic Sowa <hannes@stressinduktion.org>	2015-10-08 18:19:53 +0200
committer	Sasha Levin <sasha.levin@oracle.com>	2016-03-14 17:03:05 -0400
commit	b014bae072a1dad1767c5c6e7e7b480165685c3e (patch)
tree	bf23bfb5cfb2fb6b84556b5791370b46938456ca
parent	b5c41530ef442dba667c4d964c722e8157f7da72 (diff)