git.samba.org / sfrench / cifs-2.6.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3c13725) | patch
netfilter: nft_limit: do not ignore unsupported flags
authorPablo Neira Ayuso <pablo@netfilter.org>
Tue, 9 Jan 2024 23:42:37 +0000 (00:42 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Wed, 17 Jan 2024 11:02:47 +0000 (12:02 +0100)
commit91a139cee1202a4599a380810d93c69b5bac6197
tree08da2f0718e4c98fc844c15bcb54d2b6f19887c2tree
parent3c13725f43dcf43ad8a9bcd6a9f12add19a8f93ecommit | diff
netfilter: nft_limit: do not ignore unsupported flags

Bail out if userspace provides unsupported flags, otherwise future
extensions to the limit expression will be silently ignored by the
kernel.

Fixes: c7862a5f0de5 ("netfilter: nft_limit: allow to invert matching criteria")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nft_limit.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.