diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2019-08-16 11:23:58 +0200 |
---|---|---|
committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2019-09-21 07:18:29 +0200 |
commit | f30dade2d5d5f20b285e8fcb9f9d3d371a7a7dd8 (patch) | |
tree | 5ba79f82e924c82662ef678a7e636b5e9df95e12 /net | |
parent | 399676d85515354affca656ca8d98286ba58795b (diff) | |
download | linux-stable-f30dade2d5d5f20b285e8fcb9f9d3d371a7a7dd8.tar.gz linux-stable-f30dade2d5d5f20b285e8fcb9f9d3d371a7a7dd8.tar.bz2 linux-stable-f30dade2d5d5f20b285e8fcb9f9d3d371a7a7dd8.zip |
netfilter: nft_flow_offload: missing netlink attribute policy
[ Upstream commit 14c415862c0630e01712a4eeaf6159a2b1b6d2a4 ]
The netlink attribute policy for NFTA_FLOW_TABLE_NAME is missing.
Fixes: a3c90f7a2323 ("netfilter: nf_tables: flow offload expression")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
Diffstat (limited to 'net')
-rw-r--r-- | net/netfilter/nft_flow_offload.c | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/net/netfilter/nft_flow_offload.c b/net/netfilter/nft_flow_offload.c index 060a4ed46d5e..01705ad74a9a 100644 --- a/net/netfilter/nft_flow_offload.c +++ b/net/netfilter/nft_flow_offload.c @@ -149,6 +149,11 @@ static int nft_flow_offload_validate(const struct nft_ctx *ctx, return nft_chain_validate_hooks(ctx->chain, hook_mask); } +static const struct nla_policy nft_flow_offload_policy[NFTA_FLOW_MAX + 1] = { + [NFTA_FLOW_TABLE_NAME] = { .type = NLA_STRING, + .len = NFT_NAME_MAXLEN - 1 }, +}; + static int nft_flow_offload_init(const struct nft_ctx *ctx, const struct nft_expr *expr, const struct nlattr * const tb[]) @@ -207,6 +212,7 @@ static const struct nft_expr_ops nft_flow_offload_ops = { static struct nft_expr_type nft_flow_offload_type __read_mostly = { .name = "flow_offload", .ops = &nft_flow_offload_ops, + .policy = nft_flow_offload_policy, .maxattr = NFTA_FLOW_MAX, .owner = THIS_MODULE, }; |