On Mon, Nov 14, 2016 at 10:33:34PM +0100, Laura Garcia Liebana wrote:
> Use the function nft_parse_u32_check() to fetch the value and validate
> the u32 attribute into the hash len u8 field.
>
> This patch revisits 4da449ae1df9 ("netfilter: nft_exthdr: Add size check
> on u8 nft_exthdr attributes").
Applied, thanks.
Please, always target your fixes to nf.
New features go to nf-next.
Regarding patch title, in second place we usually specify to what
component this is targeted to, so I would suggest:
netfilter: nft_hash: validate maximum value of u32 netlink hash attribute
so git log --oneline quickly tells us this is targetd to nft_hash.
I have also added this tag which is useful for -stable maintainers:
Fixes: cb1b69b0b15b ("netfilter: nf_tables: add hash expression")
Thanks Laura!
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
