]> git.baikalelectronics.ru Git - kernel.git/commit
netfilter: x_tables: check error target size too
authorFlorian Westphal <fw@strlen.de>
Tue, 27 Feb 2018 18:42:28 +0000 (19:42 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 5 Mar 2018 22:15:43 +0000 (23:15 +0100)
commit01be562519582c613d4bb61ea4d31154237f4af5
treebfadfc779de9d9633275afb3a9335bff5e271036
parent1b916b7660f9efb68040f8934abc53c04ec6f696
netfilter: x_tables: check error target size too

Check that userspace ERROR target (custom user-defined chains) match
expected format, and the chain name is null terminated.

This is irrelevant for kernel, but iptables itself relies on sane input
when it dumps rules from kernel.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/x_tables.c