]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: eefddc3) | patch
pf: Improve pf_rule input validation
authorKristof Provost <kp@FreeBSD.org>
Tue, 26 Jan 2021 07:56:51 +0000 (08:56 +0100)
committerKristof Provost <kp@FreeBSD.org>
Wed, 3 Feb 2021 09:09:14 +0000 (10:09 +0100)
commit71abbe15d01f73a4e55a732f21180d339eab631d
treeddf51b8f1984f808c18ef83dbf36630642525a32tree | snapshot
parenteefddc38243d53a6df41f72c17c65b17d8c46e9ccommit | diff
pf: Improve pf_rule input validation

Move the validation checks to pf_rule_to_krule() to reduce duplication.
This also makes the checks consistent across different ioctls.

Reported-by: syzbot+e9632d7ad17398f0bd8f@syzkaller.appspotmail.com
Reviewed by: tuexen@, donner@
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D28362

(cherry picked from commit 7a808c5ee3296fdb72d8e8bc6c7ad6f316a520ab)
sys/netpfil/pf/pf_ioctl.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.