From: Prasad J Pandit <p...@fedoraproject.org>
Hello,
Linux net_deivce defines network interface name to be of IFNAMSIZE(=16)
bytes, including the terminating null('\0') byte.
Qemu tap deivce, while invoking 'qemu-bridge-helper' tool to set up the
network bridge interface, supplies bridge name of 16 characters, thus
allowing to create an ACL bypass scenario.
This patch series attempts to fix it. It also refactors bridge helper
invocation routine 'net_bridge_run_helper' to directly invoke the helper
command.
Thank you.
---
Prasad J Pandit (3):
qemu-bridge-helper: restrict interface name to IFNAMSIZ
qemu-bridge-helper: move repeating code in parse_acl_file
net: tap: refactor net_bridge_run_helper routine
net/tap.c | 43 +++++++++----------------------------------
qemu-bridge-helper.c | 24 +++++++++++++++++-------
2 files changed, 26 insertions(+), 41 deletions(-)
--
2.21.0
