net: vrf: do not allow table id 0

[ Upstream commit 24c63bbc18e25d5d8439422aa5fd2d66390b88eb ] Frank reported that vrf devices can be created with a table id of 0. This breaks many of the run time table id checks and should not be allowed. Detect this condition at create time and fail with EINVAL. Fixes: 193125dbd8eb ("net: Introduce VRF device driver") Reported-by: Frank Kellermann <frank.kellermann@atos.net> Signed-off-by: David Ahern <dsa@cumulusnetworks.com> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
author: David Ahern <dsa@cumulusnetworks.com> 2017-01-10 15:22:25 -0800
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2017-01-15 13:42:56 +0100
commit: e425ed1d3c75295a3578df1a8b0314a83d9a5ec8 (patch)
tree: 610be98d76e0312bd9cbdd042c8a2a1580f4805a
parent: 7b7a5a85b1d90efbad5b5c9efe8a06e13832ec01 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/drivers/net/vrf.c b/drivers/net/vrf.c
index 12b8085430e8..95cf1d844781 100644
--- a/drivers/net/vrf.c
+++ b/drivers/net/vrf.c
@@ -1239,6 +1239,8 @@ static int vrf_newlink(struct net *src_net, struct net_device *dev,
 		return -EINVAL;
 
 	vrf->tb_id = nla_get_u32(data[IFLA_VRF_TABLE]);
+	if (vrf->tb_id == RT_TABLE_UNSPEC)
+		return -EINVAL;
 
 	dev->priv_flags |= IFF_L3MDEV_MASTER;
author	David Ahern <dsa@cumulusnetworks.com>	2017-01-10 15:22:25 -0800
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2017-01-15 13:42:56 +0100
commit	e425ed1d3c75295a3578df1a8b0314a83d9a5ec8 (patch)
tree	610be98d76e0312bd9cbdd042c8a2a1580f4805a
parent	7b7a5a85b1d90efbad5b5c9efe8a06e13832ec01 (diff)