netfilter: x_tables: Use unsafe_memcpy() for 0-sized destination
The struct xt_entry_target fake flexible array has not be converted to a true flexible array, which is mainly blocked by it being both UAPI and used in the middle of other structures. In order to properly check for 0-sized destinations in memcpy(), an exception must be made for the one place where it is still a destination. Since memcpy() was already skipping checks for 0-sized destinations, using unsafe_memcpy() is no change in behavior. Signed-off-by:Kees Cook <keescook@chromium.org> Reviewed-by:
Simon Horman <horms@kernel.org> Signed-off-by:
Florian Westphal <fw@strlen.de>
Loading
Please register or sign in to comment