netfilter: nft_set_bitmap: initialize set element extension in lookups

Otherwise, nft_lookup might dereference an uninitialized pointer to the element extension. Fixes: 665153ff5752 ("netfilter: nf_tables: add bitmap set type") Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2020-03-27 17:43:04 +0100
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2020-03-30 02:05:37 +0200
commit: 24791b9aa1ab09818617ff384876930e09ada0a3 (patch)
tree: 0ef5fe62c443a7e267b8542fb3441f80c8f188c4 /net/netfilter
parent: netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set (diff)
download: wireguard-linux-24791b9aa1ab09818617ff384876930e09ada0a3.tar.xz
wireguard-linux-24791b9aa1ab09818617ff384876930e09ada0a3.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/net/netfilter/nft_set_bitmap.c b/net/netfilter/nft_set_bitmap.c
index 1cb2e67e6e03..6829a497b4cc 100644
--- a/net/netfilter/nft_set_bitmap.c
+++ b/net/netfilter/nft_set_bitmap.c
@@ -81,6 +81,7 @@ static bool nft_bitmap_lookup(const struct net *net, const struct nft_set *set,
 	u32 idx, off;
 
 	nft_bitmap_location(set, key, &idx, &off);
+	*ext = NULL;
 
 	return nft_bitmap_active(priv->bitmap, idx, off, genmask);
 }
author	Pablo Neira Ayuso <pablo@netfilter.org>	2020-03-27 17:43:04 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2020-03-30 02:05:37 +0200
commit	24791b9aa1ab09818617ff384876930e09ada0a3 (patch)
tree	0ef5fe62c443a7e267b8542fb3441f80c8f188c4 /net/netfilter
parent	netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set (diff)
download	wireguard-linux-24791b9aa1ab09818617ff384876930e09ada0a3.tar.xz wireguard-linux-24791b9aa1ab09818617ff384876930e09ada0a3.zip