| From 9abfc9672c56d065876fae61ee3f03570682c8fa Mon Sep 17 00:00:00 2001 |
| From: Jakub Kicinski <kuba@kernel.org> |
| Date: Mon, 2 Mar 2020 21:08:31 -0800 |
| Subject: [PATCH] netfilter: cthelper: add missing attribute validation for |
| cthelper |
| |
| commit c049b3450072b8e3998053490e025839fecfef31 upstream. |
| |
| Add missing attribute validation for cthelper |
| to the netlink policy. |
| |
| Fixes: 12f7a505331e ("netfilter: add user-space connection tracking helper infrastructure") |
| Signed-off-by: Jakub Kicinski <kuba@kernel.org> |
| Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> |
| Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com> |
| |
| diff --git a/net/netfilter/nfnetlink_cthelper.c b/net/netfilter/nfnetlink_cthelper.c |
| index 7525063c25f5..60838d5fb8e0 100644 |
| --- a/net/netfilter/nfnetlink_cthelper.c |
| +++ b/net/netfilter/nfnetlink_cthelper.c |
| @@ -742,6 +742,8 @@ static const struct nla_policy nfnl_cthelper_policy[NFCTH_MAX+1] = { |
| [NFCTH_NAME] = { .type = NLA_NUL_STRING, |
| .len = NF_CT_HELPER_NAME_LEN-1 }, |
| [NFCTH_QUEUE_NUM] = { .type = NLA_U32, }, |
| + [NFCTH_PRIV_DATA_LEN] = { .type = NLA_U32, }, |
| + [NFCTH_STATUS] = { .type = NLA_U32, }, |
| }; |
| |
| static const struct nfnl_callback nfnl_cthelper_cb[NFNL_MSG_CTHELPER_MAX] = { |
| -- |
| 2.7.4 |
| |
