confile: add missing prefix validation

author Christian Brauner <christian.brauner@ubuntu.com>

Sat, 27 Mar 2021 19:49:19 +0000 (20:49 +0100)

committer Christian Brauner <christian.brauner@ubuntu.com>

Sat, 27 Mar 2021 19:49:19 +0000 (20:49 +0100)
author Christian Brauner <christian.brauner@ubuntu.com>
Sat, 27 Mar 2021 19:49:19 +0000 (20:49 +0100)
committer Christian Brauner <christian.brauner@ubuntu.com>
Sat, 27 Mar 2021 19:49:19 +0000 (20:49 +0100)
diff --git a/src/lxc/confile.c b/src/lxc/confile.c

index 3c5cb90603b896c5c06fb8424878001340fb0069..d53c4f8806831c15eaba72f6601fb9f09ef5bd82 100644 (file)
--- a/src/lxc/confile.c
+++ b/src/lxc/confile.c
@@ -760,6 +760,8 @@ static int set_config_net_ipv4_address(const char *key, const char *value,
         } else {
                 inetdev->prefix = config_ip_prefix(&inetdev->addr);
         }
+       if (inetdev->prefix > 32)
+               return ret_errno(EINVAL);
  
         /* If no broadcast address, let compute one from the
          * prefix and address.
author	Christian Brauner <christian.brauner@ubuntu.com>
	Sat, 27 Mar 2021 19:49:19 +0000 (20:49 +0100)
committer	Christian Brauner <christian.brauner@ubuntu.com>
	Sat, 27 Mar 2021 19:49:19 +0000 (20:49 +0100)