netfilter: nft_meta: fix lack of validation of the input register

We have to validate that the input register is in the range of allowed registers, otherwise we can take a incorrect register value as input that may lead us to a crash. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2014-01-09 20:03:55 +0100
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2014-01-09 20:04:16 +0100
commit: b38895c5773b00977ca6beff8ebbd2e3f55f1f84 (patch)
tree: 1e37bac72abf29ab1a3a14c427c3610939438876
parent: c4ede3d3821a732120fd671846c2606a1eb4e8b3 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/net/netfilter/nft_meta.c b/net/netfilter/nft_meta.c
index b43975a43309..e8254ad2e5a9 100644
--- a/net/netfilter/nft_meta.c
+++ b/net/netfilter/nft_meta.c
@@ -239,6 +239,9 @@ static int nft_meta_init(const struct nft_ctx *ctx, const struct nft_expr *expr,
 		return err;
 
 	priv->sreg = ntohl(nla_get_be32(tb[NFTA_META_SREG]));
+	err = nft_validate_input_register(priv->sreg);
+	if (err < 0)
+		return err;
 
 	return 0;
 }
author	Pablo Neira Ayuso <pablo@netfilter.org>	2014-01-09 20:03:55 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2014-01-09 20:04:16 +0100
commit	b38895c5773b00977ca6beff8ebbd2e3f55f1f84 (patch)
tree	1e37bac72abf29ab1a3a14c427c3610939438876
parent	c4ede3d3821a732120fd671846c2606a1eb4e8b3 (diff)