diff options
| author | Dan Carpenter <dan.carpenter@oracle.com> | 2016-10-12 02:09:12 -0400 |
|---|---|---|
| committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2016-10-17 11:43:54 -0400 |
| commit | 21a9e0f1568eaa0aad970c06e4cc8d77de8d9fa1 (patch) | |
| tree | b06a3dfbb03efdc1fc29d135cf28bae9f230e8c7 | |
| parent | 09525a09ad3099efd9ba49b0b90bddc350d6b53a (diff) | |
netfilter: nft_exthdr: fix error handling in nft_exthdr_init()
"err" needs to be signed for the error handling to work.
Fixes: 36b701fae12a ('netfilter: nf_tables: validate maximum value of u32 netlink attributes')
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
| -rw-r--r-- | net/netfilter/nft_exthdr.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/net/netfilter/nft_exthdr.c b/net/netfilter/nft_exthdr.c index a84cf3d66056..47beb3abcc9d 100644 --- a/net/netfilter/nft_exthdr.c +++ b/net/netfilter/nft_exthdr.c | |||
| @@ -59,7 +59,8 @@ static int nft_exthdr_init(const struct nft_ctx *ctx, | |||
| 59 | const struct nlattr * const tb[]) | 59 | const struct nlattr * const tb[]) |
| 60 | { | 60 | { |
| 61 | struct nft_exthdr *priv = nft_expr_priv(expr); | 61 | struct nft_exthdr *priv = nft_expr_priv(expr); |
| 62 | u32 offset, len, err; | 62 | u32 offset, len; |
| 63 | int err; | ||
| 63 | 64 | ||
| 64 | if (tb[NFTA_EXTHDR_DREG] == NULL || | 65 | if (tb[NFTA_EXTHDR_DREG] == NULL || |
| 65 | tb[NFTA_EXTHDR_TYPE] == NULL || | 66 | tb[NFTA_EXTHDR_TYPE] == NULL || |