pcn-iptables: fix rule id check when inserting rule

mbertrone · mbertrone · commit 684f8d5ff435 · 2019-05-14T15:23:05.000+02:00
Signed-off-by: Matteo Bertrone &lt;m.bertrone@gmail.com&gt;
diff --git a/src/services/pcn-iptables/src/Chain.cpp b/src/services/pcn-iptables/src/Chain.cpp
@@ -232,6 +232,10 @@ ChainInsertOutputJsonObject Chain::insert(ChainInsertInputJsonObject input) {
     id = input.getId();
   }
 
+  if (id > rules_.size()) {
+    throw std::runtime_error("id not allowed");
+  }
+
   auto newRule = std::make_shared<ChainRule>(*this, conf);
 
   ChainStatsJsonObject confStats;
@@ -1072,4 +1076,4 @@ void Chain::delRuleList() {
   if (parent_.interactive_) {
     applyRules();
   }
-}
+}

Original file line number	Diff line number	Diff line change
`@@ -232,6 +232,10 @@ ChainInsertOutputJsonObject Chain::insert(ChainInsertInputJsonObject input) {`
`232`	`232`	`id = input.getId();`
`233`	`233`	`}`
`234`	`234`
	`235`	`+ if (id > rules_.size()) {`
	`236`	`+ throw std::runtime_error("id not allowed");`
	`237`	`+ }`
	`238`	`+`
`235`	`239`	`auto newRule = std::make_shared<ChainRule>(*this, conf);`
`236`	`240`
`237`	`241`	`ChainStatsJsonObject confStats;`
`@@ -1072,4 +1076,4 @@ void Chain::delRuleList() {`
`1072`	`1076`	`if (parent_.interactive_) {`
`1073`	`1077`	`applyRules();`
`1074`	`1078`	`}`
`1075`		`-}`
	`1079`	`+}`