netfilter: nfnetlink_queue: Initialize ctx to avoid memory allocation error - linux-rng

diff options

author	Chenyuan Yang <chenyuan0y@gmail.com>	2025-03-13 14:54:41 -0500
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2025-03-23 10:20:33 +0100
commit	778b09d91baafb13408470c721d034d6515cfa5a (patch)
tree	32a51abdecacd193fc8345b961c05567f8fb8369 /scripts/generate_rust_analyzer.py
parent	netfilter: fib: avoid lookup if socket is available (diff)
download	linux-rng-778b09d91baafb13408470c721d034d6515cfa5a.tar.xz linux-rng-778b09d91baafb13408470c721d034d6515cfa5a.zip

netfilter: nfnetlink_queue: Initialize ctx to avoid memory allocation error

It is possible that ctx in nfqnl_build_packet_message() could be used before it is properly initialize, which is only initialized by nfqnl_get_sk_secctx(). This patch corrects this problem by initializing the lsmctx to a safe value when it is declared. This is similar to the commit 35fcac7a7c25 ("audit: Initialize lsmctx to avoid memory allocation error"). Fixes: 2d470c778120 ("lsm: replace context+len with lsm_context") Signed-off-by: Chenyuan Yang <chenyuan0y@gmail.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

Diffstat (limited to 'scripts/generate_rust_analyzer.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: