diff options
author | Arturo Borrero <arturo.borrero.glez@gmail.com> | 2014-02-26 19:13:26 +0100 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2014-02-27 10:35:08 +0100 |
commit | cfe671fa741c9669cadc5dfbf9ae63eb440601cf (patch) | |
tree | eadb2e1a0242a4a49808327efa1e05bc19f8726f /src/rule.c | |
parent | 313c702ad8700ee5a959d81fd5b2da38e161c278 (diff) |
src: check if netlink parsing fails
We have to check if mnl_attr_parse() returns an error, which means that it
failed to validate and retrieve the attributes.
Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/rule.c')
-rw-r--r-- | src/rule.c | 4 |
1 files changed, 3 insertions, 1 deletions
@@ -455,7 +455,9 @@ int nft_rule_nlmsg_parse(const struct nlmsghdr *nlh, struct nft_rule *r) struct nfgenmsg *nfg = mnl_nlmsg_get_payload(nlh); int ret = 0; - mnl_attr_parse(nlh, sizeof(*nfg), nft_rule_parse_attr_cb, tb); + if (mnl_attr_parse(nlh, sizeof(*nfg), nft_rule_parse_attr_cb, tb) < 0) + return -1; + if (tb[NFTA_RULE_TABLE]) { r->table = strdup(mnl_attr_get_str(tb[NFTA_RULE_TABLE])); r->flags |= (1 << NFT_RULE_ATTR_TABLE); |