src: early attribute type validation in nft_*_attr_set

This allows us to remove the default case in the switch, which show help to spot missing attribute support since gcc will spot a compilation warning. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2014-02-25 22:27:12 +0100
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2014-02-27 10:35:07 +0100
commit: 41175cec8407da4687493a9f74043656682d470a (patch)
tree: 0480536d5861270c83edc43908cc9abe5da6eb69 /src/table.c
parent: 19c3da8e70d32818b7267fc63b44441295e69567 (diff)
1 files changed, 6 insertions, 5 deletions
diff --git a/src/table.c b/src/table.c
index c834a4e..af4b13c 100644
--- a/src/table.c
+++ b/src/table.c
@@ -81,26 +81,27 @@ EXPORT_SYMBOL(nft_table_attr_unset);
 
 void nft_table_attr_set(struct nft_table *t, uint16_t attr, const void *data)
 {
+	if (attr > NFT_TABLE_ATTR_MAX)
+		return;
+
 	switch (attr) {
 	case NFT_TABLE_ATTR_NAME:
 		if (t->name)
 			xfree(t->name);
 
 		t->name = strdup(data);
-		t->flags |= (1 << NFT_TABLE_ATTR_NAME);
 		break;
 	case NFT_TABLE_ATTR_FLAGS:
 		t->table_flags = *((uint32_t *)data);
-		t->flags |= (1 << NFT_TABLE_ATTR_FLAGS);
 		break;
 	case NFT_TABLE_ATTR_FAMILY:
 		t->family = *((uint8_t *)data);
-		t->flags |= (1 << NFT_TABLE_ATTR_FAMILY);
 		break;
 	case NFT_TABLE_ATTR_USE:
-		/* Cannot be unset, ignoring it */
-		break;
+		/* Cannot be set, ignoring it */
+		return;
 	}
+	t->flags |= (1 << attr);
 }
 EXPORT_SYMBOL(nft_table_attr_set);
author	Pablo Neira Ayuso <pablo@netfilter.org>	2014-02-25 22:27:12 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2014-02-27 10:35:07 +0100
commit	41175cec8407da4687493a9f74043656682d470a (patch)
tree	0480536d5861270c83edc43908cc9abe5da6eb69 /src/table.c
parent	19c3da8e70d32818b7267fc63b44441295e69567 (diff)