SCTP: Fix chunk acceptance when no authenticated chunks were listed.

In the case where no autheticated chunks were specified, we were still trying to verify that a given chunk needs authentication and doing so incorrectly. Add a check for parameter length to make sure we don't try to use an empty auth_chunks parameter to verify against. Signed-off-by: N Vlad Yasevich <vladislav.yasevich@hp.com>

SCTP: Fix chunk acceptance when no authenticated chunks were listed.
In the case where no autheticated chunks were specified, we were still trying to verify that a given chunk needs authentication and doing so incorrectly. Add a check for parameter length to make sure we don't try to use an empty auth_chunks parameter to verify against. Signed-off-by: N Vlad Yasevich <vladislav.yasevich@hp.com>
555d3d5d · Vlad Yasevich · 8ee4be37 · 555d3d5d
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

net/sctp/auth.c net/sctp/auth.c +1 -1

未找到文件。
--- a/net/sctp/auth.c
+++ b/net/sctp/auth.c
@@ -631,7 +631,7 @@ static int __sctp_auth_cid(sctp_cid_t chunk, struct sctp_chunks_param *param)
 	int found = 0;
 	int i;

-	if (!param)
+	if (!param || param->param_hdr.length == 0)
 		return 0;

 	len = ntohs(param->param_hdr.length) - sizeof(sctp_paramhdr_t);