src - OpenBSD base system

diff options


context:
space:
mode:

author	Alexander Bluhm <bluhm@cvs.openbsd.org>	2018-06-04 12:13:02 +0000
committer	Alexander Bluhm <bluhm@cvs.openbsd.org>	2018-06-04 12:13:02 +0000
commit	8b7026e43492ef94d4d2a92f09ca6f22ed7a5896 (patch)
tree	35935687286f977f62c2028e067b25b8585990e5
parent	b2cc7656f8f8c0588154fc1030d3ebd0cb644d78 (diff)

Cleanup IPsec output error handling with consistent goto drop.

from markus@; OK mpi@

Diffstat

-rw-r--r--

sys/netinet/ipsec_output.c

106

1 files changed, 61 insertions, 45 deletions

diff --git a/sys/netinet/ipsec_output.c b/sys/netinet/ipsec_output.c
index 2e90a2f6973..fa5efbc18ae 100644
--- a/sys/netinet/ipsec_output.c
+++ b/sys/netinet/ipsec_output.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: ipsec_output.c,v 1.71 2018/05/14 15:04:05 bluhm Exp $ */

+/* $OpenBSD: ipsec_output.c,v 1.72 2018/06/04 12:13:01 bluhm Exp $ */

* The author of this code is Angelos D. Keromytis (angelos@cis.upenn.edu)

@@ -89,15 +89,15 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

(tdb->tdb_sproto == IPPROTO_IPCOMP && !ipcomp_enable)) {

DPRINTF(("ipsp_process_packet(): IPsec outbound packet "

"dropped due to policy (check your sysctls)\n"));

- m_freem(m);

- return EHOSTUNREACH;

+ error = EHOSTUNREACH;

+ goto drop;

}

/* Sanity check. */

if (!tdb->tdb_xform) {

DPRINTF(("%s: uninitialized TDB\n", __func__));

- m_freem(m);

- return EHOSTUNREACH;

+ error = EHOSTUNREACH;

+ goto drop;

}

/* Check if the SPI is invalid. */

@@ -105,8 +105,8 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

DPRINTF(("ipsp_process_packet(): attempt to use invalid "

"SA %s/%08x/%u\n", ipsp_address(&tdb->tdb_dst, buf,

sizeof(buf)), ntohl(tdb->tdb_spi), tdb->tdb_sproto));

- m_freem(m);

- return ENXIO;

+ error = ENXIO;

+ goto drop;

}

/* Check that the network protocol is supported */

@@ -125,8 +125,8 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

ipsp_address(&tdb->tdb_dst, buf, sizeof(buf)),

ntohl(tdb->tdb_spi), tdb->tdb_sproto,

tdb->tdb_dst.sa.sa_family));

- m_freem(m);

- return ENXIO;

+ error = ENXIO;

+ goto drop;

}

@@ -163,8 +163,10 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

/* Bring the network header in the first mbuf. */

if (m->m_len < hlen) {

- if ((m = m_pullup(m, hlen)) == NULL)

- return ENOBUFS;

+ if ((m = m_pullup(m, hlen)) == NULL) {

+ error = ENOBUFS;

+ goto drop;

+ }

}

if (af == AF_INET) {

@@ -201,8 +203,10 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

if (af == AF_INET) {

if (m->m_len < sizeof(struct ip))

if ((m = m_pullup(m,

- sizeof(struct ip))) == NULL)

- return ENOBUFS;

+ sizeof(struct ip))) == NULL) {

+ error = ENOBUFS;

+ goto drop;

+ }

ip = mtod(m, struct ip *);

ip->ip_len = htons(m->m_pkthdr.len);

@@ -215,14 +219,16 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

if (af == AF_INET6) {

if (m->m_len < sizeof(struct ip6_hdr))

if ((m = m_pullup(m,

- sizeof(struct ip6_hdr))) == NULL)

- return ENOBUFS;

+ sizeof(struct ip6_hdr))) == NULL) {

+ error = ENOBUFS;

+ goto drop;

+ }

if (m->m_pkthdr.len - sizeof(*ip6) >

IPV6_MAXPACKET) {

/* No jumbogram support. */

- m_freem(m);

- return ENXIO; /*?*/

+ error = ENXIO; /*?*/

+ goto drop;

}

ip6 = mtod(m, struct ip6_hdr *);

ip6->ip6_plen = htons(m->m_pkthdr.len

@@ -234,19 +240,18 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

error = ipip_output(m, tdb, &mp, 0, 0);

if ((mp == NULL) && (!error))

error = EFAULT;

- if (error) {

- m_freem(mp);

- return error;

- }

m = mp;

mp = NULL;

+ if (error)

+ goto drop;

if (tdb->tdb_dst.sa.sa_family == AF_INET && setdf) {

if (m->m_len < sizeof(struct ip))

if ((m = m_pullup(m,

- sizeof(struct ip))) == NULL)

- return ENOBUFS;

+ sizeof(struct ip))) == NULL) {

+ error = ENOBUFS;

+ goto drop;

+ }

ip = mtod(m, struct ip *);

ip->ip_off |= htons(IP_DF);

@@ -322,8 +327,8 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

dstopt = 2;

}

if (m->m_pkthdr.len < hlen + sizeof(ip6e)) {

- m_freem(m);

- return EINVAL;

+ error = EINVAL;

+ goto drop;

}

/* skip this header */

m_copydata(m, hlen, sizeof(ip6e),

@@ -340,14 +345,17 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

goto exitip6loop;

}

} while (hlen < m->m_pkthdr.len);

- exitip6loop:;

+ exitip6loop:

break;

#endif /* INET6 */

+ default:

+ error = EINVAL;

+ goto drop;

}

if (m->m_pkthdr.len < hlen) {

- m_freem(m);

- return EINVAL;

+ error = EINVAL;

+ goto drop;

}

/* Non expansion policy for IPCOMP */

@@ -361,6 +369,10 @@ ipsp_process_packet(struct mbuf *m, struct tdb *tdb, int af, int tunalready)

/* Invoke the IPsec transform. */

return (*(tdb->tdb_xform->xf_output))(m, tdb, NULL, hlen, off);

+ drop:

+ m_freem(m);

+ return error;

}

@@ -376,7 +388,7 @@ ipsp_process_done(struct mbuf *m, struct tdb *tdb)

#endif /* INET6 */

struct tdb_ident *tdbi;

struct m_tag *mtag;

- int roff;

+ int roff, error;

tdb->tdb_last_used = time_second;

@@ -386,8 +398,8 @@ ipsp_process_done(struct mbuf *m, struct tdb *tdb)

int iphlen;

if (!udpencap_enable || !udpencap_port) {

- m_freem(m);

- return ENXIO;

+ error = ENXIO;

+ goto drop;

}

switch (tdb->tdb_dst.sa.sa_family) {

@@ -400,16 +412,16 @@ ipsp_process_done(struct mbuf *m, struct tdb *tdb)

break;

#endif /* INET6 */

default:

- m_freem(m);

DPRINTF(("ipsp_process_done(): unknown protocol family "

"(%d)\n", tdb->tdb_dst.sa.sa_family));

- return ENXIO;

+ error = ENXIO;

+ goto drop;

}

mi = m_makespace(m, iphlen, sizeof(struct udphdr), &roff);

if (mi == NULL) {

- m_freem(m);

- return ENOMEM;

+ error = ENOMEM;

+ goto drop;

}

uh = (struct udphdr *)(mtod(mi, caddr_t) + roff);

uh->uh_sport = uh->uh_dport = htons(udpencap_port);

@@ -438,13 +450,13 @@ ipsp_process_done(struct mbuf *m, struct tdb *tdb)

case AF_INET6:

/* Fix the header length, for AH processing. */

if (m->m_pkthdr.len < sizeof(*ip6)) {

- m_freem(m);

- return ENXIO;

+ error = ENXIO;

+ goto drop;

}

if (m->m_pkthdr.len - sizeof(*ip6) > IPV6_MAXPACKET) {

/* No jumbogram support. */

- m_freem(m);

- return ENXIO;

+ error = ENXIO;

+ goto drop;

}

ip6 = mtod(m, struct ip6_hdr *);

ip6->ip6_plen = htons(m->m_pkthdr.len - sizeof(*ip6));

@@ -454,10 +466,10 @@ ipsp_process_done(struct mbuf *m, struct tdb *tdb)

#endif /* INET6 */

default:

- m_freem(m);

DPRINTF(("ipsp_process_done(): unknown protocol family (%d)\n",

tdb->tdb_dst.sa.sa_family));

- return ENXIO;

+ error = ENXIO;

+ goto drop;

}

@@ -467,10 +479,10 @@ ipsp_process_done(struct mbuf *m, struct tdb *tdb)

mtag = m_tag_get(PACKET_TAG_IPSEC_OUT_DONE, sizeof(struct tdb_ident),

M_NOWAIT);

if (mtag == NULL) {

- m_freem(m);

DPRINTF(("ipsp_process_done(): could not allocate packet "

"tag\n"));

- return ENOMEM;

+ error = ENOMEM;

+ goto drop;

}

tdbi = (struct tdb_ident *)(mtag + 1);

@@ -510,7 +522,11 @@ ipsp_process_done(struct mbuf *m, struct tdb *tdb)

return (ip6_output(m, NULL, NULL, 0, NULL, NULL));

#endif /* INET6 */

}

- return EINVAL; /* Not reached. */

+ error = EINVAL; /* Not reached. */

+ drop:

+ m_freem(m);

+ return error;

}

ssize_t