]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f74897c) | patch
netfilter: nf_tables: replace BUG_ON by element length check
authorPablo Neira Ayuso <pablo@netfilter.org>
Tue, 5 Jul 2022 09:41:59 +0000 (11:41 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Sat, 9 Jul 2022 14:25:09 +0000 (16:25 +0200)
commit6365e41b18c9740cacc6cfaf6cb85575b6f543e4
tree9573c622675b31bbb723ca6d302c557578557d25tree | snapshot
parentf74897c32f93782eccbf3754b6b155a6559b56ffcommit | diff
netfilter: nf_tables: replace BUG_ON by element length check

BUG_ON can be triggered from userspace with an element with a large
userdata area. Replace it by length check and return EINVAL instead.
Over time extensions have been growing in size.

Pick a sufficiently old Fixes: tag to propagate this fix.

Fixes: ef5485c9b3ef ("netfilter: nf_tables: variable sized set element keys / data")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/net/netfilter/nf_tables.h diff | blob | history
net/netfilter/nf_tables_api.c diff | blob | history
Linux Kernel Source Tree.