projects / platform / kernel / linux-rpi3.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bd975e6) | patch
netfilter: ipset: Limit max timeout value
authorJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Tue, 5 Jun 2018 09:53:35 +0000 (11:53 +0200)
committerJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Wed, 6 Jun 2018 12:00:54 +0000 (14:00 +0200)
commit30a2e107108c66cbcb7776b58cbcd7db223a1cc9
tree65ea68d08591b0d72584d6254142b654f7eb7ba6tree | snapshot
parentbd975e691486ba52790ba23cc9b4fecab7bc0d31commit | diff
netfilter: ipset: Limit max timeout value

Due to the negative value condition in msecs_to_jiffies(), the real
max possible timeout value must be set to (UINT_MAX >> 1)/MSEC_PER_SEC.

Neutron Soutmun proposed the proper fix, but an insufficient one was
applied, see https://patchwork.ozlabs.org/patch/400405/.

Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
include/linux/netfilter/ipset/ip_set_timeout.h diff | blob | history
net/netfilter/xt_set.c diff | blob | history
Domain: System / Kernel; Licenses: GPL-2.0;