!15116 netfilter: conntrack: clamp maximum hashtable size to INT_MAX (57a701dd) · Commits · EulixOS / Software / Kernel

net/netfilter/nf_conntrack_core.c

+4 −1

Original line number	Diff line number	Diff line
		@@ -2314,12 +2314,15 @@ void nf_ct_alloc_hashtable(unsigned int sizep, int nulls)
		struct hlist_nulls_head *hash;
		unsigned int nr_slots, i;

		if (*sizep > (UINT_MAX / sizeof(struct hlist_nulls_head)))
		if (*sizep > (INT_MAX / sizeof(struct hlist_nulls_head)))
		return NULL;

		BUILD_BUG_ON(sizeof(struct hlist_nulls_head) != sizeof(struct hlist_head));
		nr_slots = sizep = roundup(sizep, PAGE_SIZE / sizeof(struct hlist_nulls_head));

		if (nr_slots > (INT_MAX / sizeof(struct hlist_nulls_head)))
		return NULL;

		hash = kvmalloc_array(nr_slots, sizeof(struct hlist_nulls_head),
		GFP_KERNEL \| __GFP_ZERO);