diff options
author | 2016-08-29 18:25:28 +0800 | |
---|---|---|
committer | 2016-08-30 11:52:32 +0200 | |
commit | 779994fa3636d46848edb402fe7517968e036e6f (patch) | |
tree | 59398c227d211898054545b870b5bf20dcda746f /net/bridge/netfilter | |
parent | netfilter: log_arp: Use ARPHRD_ETHER instead of literal '1' (diff) | |
download | linux-779994fa3636d46848edb402fe7517968e036e6f.tar.gz linux-779994fa3636d46848edb402fe7517968e036e6f.tar.bz2 linux-779994fa3636d46848edb402fe7517968e036e6f.zip |
netfilter: log: Check param to avoid overflow in nf_log_set
The nf_log_set is an interface function, so it should do the strict sanity
check of parameters. Convert the return value of nf_log_set as int instead
of void. When the pf is invalid, return -EOPNOTSUPP.
Signed-off-by: Gao Feng <fgao@ikuai8.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'net/bridge/netfilter')
-rw-r--r-- | net/bridge/netfilter/nf_log_bridge.c | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/net/bridge/netfilter/nf_log_bridge.c b/net/bridge/netfilter/nf_log_bridge.c index 5d9953a90929..1663df598545 100644 --- a/net/bridge/netfilter/nf_log_bridge.c +++ b/net/bridge/netfilter/nf_log_bridge.c @@ -50,8 +50,7 @@ static struct nf_logger nf_bridge_logger __read_mostly = { static int __net_init nf_log_bridge_net_init(struct net *net) { - nf_log_set(net, NFPROTO_BRIDGE, &nf_bridge_logger); - return 0; + return nf_log_set(net, NFPROTO_BRIDGE, &nf_bridge_logger); } static void __net_exit nf_log_bridge_net_exit(struct net *net) |