[PATCH] af_key: Add check for the return value of pfkey_sadb2xfrm_user_sec_ctx()

From: Haoxiang Li
Date: Thu Jul 03 2025 - 05:19:20 EST

Next message: Yang Li: "Re: [PATCH] Bluetooth: hci_core: lookup pa sync need check BIG sync state"
Previous message: weishangjuan: "[PATCH v3 0/2] Add driver support for Eswin eic7700 SoC ethernet controller"
Next in thread: Steffen Klassert: "Re: [PATCH] af_key: Add check for the return value of pfkey_sadb2xfrm_user_sec_ctx()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Add check for the return value of pfkey_sadb2xfrm_user_sec_ctx()
to prevent potential errors.

Signed-off-by: Haoxiang Li <haoxiang_li2024@xxxxxxx>
---
net/key/af_key.c | 3 +++
1 file changed, 3 insertions(+)

diff --git a/net/key/af_key.c b/net/key/af_key.c
index efc2a91f4c48..e7318cea1f3a 100644
--- a/net/key/af_key.c
+++ b/net/key/af_key.c
@@ -3335,6 +3335,9 @@ static struct xfrm_policy *pfkey_compile_policy(struct sock *sk, int opt,
if ((*dir = verify_sec_ctx_len(p)))
goto out;
uctx = pfkey_sadb2xfrm_user_sec_ctx(sec_ctx, GFP_ATOMIC);
+ if (!uctx)
+ goto out;
+
*dir = security_xfrm_policy_alloc(&xp->security, uctx, GFP_ATOMIC);
kfree(uctx);

--
2.25.1

Next message: Yang Li: "Re: [PATCH] Bluetooth: hci_core: lookup pa sync need check BIG sync state"
Previous message: weishangjuan: "[PATCH v3 0/2] Add driver support for Eswin eic7700 SoC ethernet controller"
Next in thread: Steffen Klassert: "Re: [PATCH] af_key: Add check for the return value of pfkey_sadb2xfrm_user_sec_ctx()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]