Re: [PATCH net-next v2 3/3] netlink: add validation of NLA_F_NESTED flag

From: David Ahern
Date: Wed Jul 24 2019 - 22:46:29 EST

Next message: Andrew Morton: "Re: [PATCH] mm: page_alloc: document kmemleak's non-blockable __GFP_NOFAIL case"
Previous message: Chuhong Yuan: "[PATCH v2] staging: wilc1000: Merge memcpy + le32_to_cpus to get_unaligned_le32"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 7/23/19 1:57 AM, Thomas Haller wrote:
> Does this flag and strict validation really provide any value? Commonly a netlink message
> is a plain TLV blob, and the meaning depends entirely on the policy.

Strict checking enables kernel side filtering and other features that
require passing attributes as part of the dump request - like address
dumps in a specific namespace.

Next message: Andrew Morton: "Re: [PATCH] mm: page_alloc: document kmemleak's non-blockable __GFP_NOFAIL case"
Previous message: Chuhong Yuan: "[PATCH v2] staging: wilc1000: Merge memcpy + le32_to_cpus to get_unaligned_le32"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]