ipvs: check that ip_vs_conn_tab_bits is between 8 and 20

ip_vs_conn_tab_bits may be provided by the user through the conn_tab_bits module parameter. If this value is greater than 31, or less than 0, the shift operator used to derive tab_size causes undefined behaviour. Fix this checking ip_vs_conn_tab_bits value to be in the range specified in ipvs Kconfig. If not, simply use default value. Fixes: 6f7edb48 ("IPVS: Allow boot time change of hash size") Reported-by: N Yi Chen <yiche@redhat.com> Signed-off-by: N Andrea Claudi <aclaudi@redhat.com> Acked-by: N Julian Anastasov <ja@ssi.bg> Acked-by: N Simon Horman <horms@verge.net.au> Signed-off-by: N Pablo Neira Ayuso <pablo@netfilter.org>

ipvs: check that ip_vs_conn_tab_bits is between 8 and 20
ip_vs_conn_tab_bits may be provided by the user through the conn_tab_bits module parameter. If this value is greater than 31, or less than 0, the shift operator used to derive tab_size causes undefined behaviour. Fix this checking ip_vs_conn_tab_bits value to be in the range specified in ipvs Kconfig. If not, simply use default value. Fixes: 6f7edb48 ("IPVS: Allow boot time change of hash size") Reported-by: N Yi Chen <yiche@redhat.com> Signed-off-by: N Andrea Claudi <aclaudi@redhat.com> Acked-by: N Julian Anastasov <ja@ssi.bg> Acked-by: N Simon Horman <horms@verge.net.au> Signed-off-by: N Pablo Neira Ayuso <pablo@netfilter.org>
69e73dbf · Andrea Claudi · Pablo Neira Ayuso · 7bbc3d38 · 69e73dbf
隐藏空白更改
内联并排

Showing with 4 addition and 0 deletion

net/netfilter/ipvs/ip_vs_conn.c net/netfilter/ipvs/ip_vs_conn.c +4 -0

未找到文件。
--- a/net/netfilter/ipvs/ip_vs_conn.c
+++ b/net/netfilter/ipvs/ip_vs_conn.c
@@ -1468,6 +1468,10 @@ int __init ip_vs_conn_init(void)
 	int idx;
 	/* Compute size and mask */
+	if (ip_vs_conn_tab_bits < 8 || ip_vs_conn_tab_bits > 20) {
+		pr_info("conn_tab_bits not in [8, 20]. Using default value\n");
+		ip_vs_conn_tab_bits = CONFIG_IP_VS_TAB_BITS;
+	}
 	ip_vs_conn_tab_size = 1 << ip_vs_conn_tab_bits;
 	ip_vs_conn_tab_mask = ip_vs_conn_tab_size - 1;