Cong Wang <xiyou.wangcong@xxxxxxxxx> wrote:
> Ok, so here is what I have now:
>
>
> +#define HASHLIMIT_MAX_SIZE 1048576
> +
> static int hashlimit_mt_check_common(const struct xt_mtchk_param *par,
> struct xt_hashlimit_htable **hinfo,
> struct hashlimit_cfg3 *cfg,
> @@ -847,6 +849,14 @@ static int hashlimit_mt_check_common(const struct
> xt_mtchk_param *par,
>
> if (cfg->gc_interval == 0 || cfg->expire == 0)
> return -EINVAL;
> + if (cfg->size > HASHLIMIT_MAX_SIZE) {
> + cfg->size = HASHLIMIT_MAX_SIZE;
> + pr_info_ratelimited("size too large, truncated to
> %u\n", cfg->size);
> + }
> + if (cfg->max > HASHLIMIT_MAX_SIZE) {
> + cfg->max = HASHLIMIT_MAX_SIZE;
> + pr_info_ratelimited("max too large, truncated to
> %u\n", cfg->max);
> + }
>
> Please let me know if it is still different with your suggestion.
I am fine with this.