All of lore.kernel.org
 help / color / mirror / Atom feed
* [nft PATCH] parser_json: Disallow ct helper as type to map to
@ 2019-04-11 10:38 Phil Sutter
  2019-04-11 18:49 ` Pablo Neira Ayuso
  0 siblings, 1 reply; 2+ messages in thread
From: Phil Sutter @ 2019-04-11 10:38 UTC (permalink / raw)
  To: Pablo Neira Ayuso; +Cc: netfilter-devel

When creating a map, users may either map dtype:dtype or dtype:object.
In the second case, only counter, quota, limit and secmark is allowed by
bison, but JSON parser wasn't as strict, allowing ct helper as well.
Remove that to avoid undefined behaviour.

Fixes: 586ad210368b7 ("libnftables: Implement JSON parser")
Signed-off-by: Phil Sutter <phil@nwl.cc>
---
 src/parser_json.c | 1 -
 1 file changed, 1 deletion(-)

diff --git a/src/parser_json.c b/src/parser_json.c
index 19d3ad4728130..53017935eba53 100644
--- a/src/parser_json.c
+++ b/src/parser_json.c
@@ -2503,7 +2503,6 @@ static int string_to_nft_object(const char *str)
 	const char *obj_tbl[__NFT_OBJECT_MAX] = {
 		[NFT_OBJECT_COUNTER] = "counter",
 		[NFT_OBJECT_QUOTA] = "quota",
-		[NFT_OBJECT_CT_HELPER] = "ct helper",
 		[NFT_OBJECT_LIMIT] = "limit",
 		[NFT_OBJECT_SECMARK] = "secmark",
 	};
-- 
2.21.0


^ permalink raw reply related	[flat|nested] 2+ messages in thread
* Re: [nft PATCH] parser_json: Disallow ct helper as type to map to
  2019-04-11 10:38 [nft PATCH] parser_json: Disallow ct helper as type to map to Phil Sutter
@ 2019-04-11 18:49 ` Pablo Neira Ayuso
  0 siblings, 0 replies; 2+ messages in thread
From: Pablo Neira Ayuso @ 2019-04-11 18:49 UTC (permalink / raw)
  To: Phil Sutter; +Cc: netfilter-devel

On Thu, Apr 11, 2019 at 12:38:51PM +0200, Phil Sutter wrote:
> When creating a map, users may either map dtype:dtype or dtype:object.
> In the second case, only counter, quota, limit and secmark is allowed by
> bison, but JSON parser wasn't as strict, allowing ct helper as well.
> Remove that to avoid undefined behaviour.

Applied, thanks Phil.

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2019-04-11 18:49 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-04-11 10:38 [nft PATCH] parser_json: Disallow ct helper as type to map to Phil Sutter
2019-04-11 18:49 ` Pablo Neira Ayuso

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.