On 5/12/25 10:08 AM, Eelco Chaudron wrote: > This change enhances the robustness of validate_userspace() by ensuring > that all Netlink attributes are fully contained within the parent > attribute. The previous use of nla_parse_nested_deprecated() could > silently skip trailing or malformed attributes, as it stops parsing at > the first invalid entry. > > By switching to nla_parse_deprecated_strict(), we make sure only fully > validated attributes are copied for later use.
Just to re-iterate for anyone reading this thread, copying non-validated attributes is not a problem as they will be ignored during execution. The change looks fine to me, thanks! Acked-by: Ilya Maximets <i.maxim...@ovn.org> _______________________________________________ dev mailing list d...@openvswitch.org https://mail.openvswitch.org/mailman/listinfo/ovs-dev
