ipng/vppcfg
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Do bounds checking on the BondEthernet and VXLAN Tunnel instances

Browse Source
This commit is contained in:
Pim van Pelt
2022-04-03 14:40:44 +00:00
parent 79f41d447d
commit 720f581e47
4 changed files with 60 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
config/bondethernet.py
View File

@ -70,6 +70,10 @@ def validate_bondethernets(yaml):
result = False
else:
bond_mtu = interface.get_mtu(yaml, bond_ifname)
instance = int(ifname[12:])
if instance > 4294967294:
msgs.append("bondethernet %s has instance %d which is too large" % (ifname, instance))
result = False
for member in iface['interfaces']:
if (None, None) == interface.get_by_name(yaml, member):

5
config/vxlan_tunnel.py
View File

@ -66,6 +66,11 @@ def validate_vxlan_tunnels(yaml):
for ifname, iface in yaml['vxlan_tunnels'].items():
logger.debug("vxlan_tunnel %s: %s" % (ifname, iface))
instance = int(ifname[12:])
if instance > 2147483647:
msgs.append("vxlan_tunnel %s has instance %d which is too large" % (ifname, instance))
result = False
vni = iface['vni']
if not vni_unique(yaml, vni):
msgs.append("vxlan_tunnel %s VNI %d is not unique" % (ifname, vni))