rule: Fix for potential off-by-one in cmd_add_loc()

Using num_attrs as index means it must be at max one less than the
array's size at function start.

Fixes: 27362a5bfa433 ("rule: larger number of error locations")
Signed-off-by: Phil Sutter <phil@nwl.cc>

diff --git a/src/rule.c b/src/rule.c
index dbbe744eee0d84a04618645a088040305b9d0aa9..92daf2f33b76b3f94bd00e0ceb031532dff629d2 100644 (file)
--- a/src/rule.c
+++ b/src/rule.c
@@ -1275,7 +1275,7 @@ struct cmd *cmd_alloc(enum cmd_ops op, enum cmd_obj obj,
 
 void cmd_add_loc(struct cmd *cmd, uint16_t offset, const struct location *loc)
 {
-       if (cmd->num_attrs > NFT_NLATTR_LOC_MAX)
+       if (cmd->num_attrs >= NFT_NLATTR_LOC_MAX)
                return;
 
        cmd->attr[cmd->num_attrs].offset = offset;