nf_conntrack_core: Stop using NLA_PUT*().

These macros contain a hidden goto, and are thus extremely error prone and make code hard to audit. Signed-off-by: David S. Miller <davem@davemloft.net>
author: David S. Miller <davem@davemloft.net> 2012-04-01 18:58:28 -0400
committer: David S. Miller <davem@davemloft.net> 2012-04-01 18:58:28 -0400
commit: bae65be896cc420f58460cb6f6ac03e71d1bf240 (patch)
tree: ad3ae20c94195786415e5fb7b2cecd98c5f6be3e /net
parent: nf_conntrack_netlink: Stop using NLA_PUT*(). (diff)
download: linux-dev-bae65be896cc420f58460cb6f6ac03e71d1bf240.tar.xz
linux-dev-bae65be896cc420f58460cb6f6ac03e71d1bf240.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/net/netfilter/nf_conntrack_core.c b/net/netfilter/nf_conntrack_core.c
index cbdb754dbb10..b0ab8c43abe7 100644
--- a/net/netfilter/nf_conntrack_core.c
+++ b/net/netfilter/nf_conntrack_core.c
@@ -1151,8 +1151,9 @@ static struct nf_ct_ext_type nf_ct_zone_extend __read_mostly = {
 int nf_ct_port_tuple_to_nlattr(struct sk_buff *skb,
 			       const struct nf_conntrack_tuple *tuple)
 {
-	NLA_PUT_BE16(skb, CTA_PROTO_SRC_PORT, tuple->src.u.tcp.port);
-	NLA_PUT_BE16(skb, CTA_PROTO_DST_PORT, tuple->dst.u.tcp.port);
+	if (nla_put_be16(skb, CTA_PROTO_SRC_PORT, tuple->src.u.tcp.port) ||
+	    nla_put_be16(skb, CTA_PROTO_DST_PORT, tuple->dst.u.tcp.port))
+		goto nla_put_failure;
 	return 0;
 
 nla_put_failure:
author	David S. Miller <davem@davemloft.net>	2012-04-01 18:58:28 -0400
committer	David S. Miller <davem@davemloft.net>	2012-04-01 18:58:28 -0400
commit	bae65be896cc420f58460cb6f6ac03e71d1bf240 (patch)
tree	ad3ae20c94195786415e5fb7b2cecd98c5f6be3e /net
parent	nf_conntrack_netlink: Stop using NLA_PUT*(). (diff)
download	linux-dev-bae65be896cc420f58460cb6f6ac03e71d1bf240.tar.xz linux-dev-bae65be896cc420f58460cb6f6ac03e71d1bf240.zip