Received: by 2002:ac0:a582:0:0:0:0:0 with SMTP id m2-v6csp1886255imm;
        Sat, 6 Oct 2018 12:43:50 -0700 (PDT)
X-Google-Smtp-Source: ACcGV60pOazggdcW6PXC330pSB/tQEO/X+J/eWKPfDcOmp8xQaYwn7LlrAdIB4RsOQQqXFitmfR7
X-Received: by 2002:a17:902:ba95:: with SMTP id k21-v6mr17221222pls.38.1538855030545;
        Sat, 06 Oct 2018 12:43:50 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1538855030; cv=none;
        d=google.com; s=arc-20160816;
        b=uNs2pexuUBXX5dXeGOl3T4oQst+HUcovIuOzu/m/MGTlaoJvc13cS29INwlJXUP6I1
         NxvPqmbqSzQBbNgVhEbLOw2CgTh3vQbOf+Wcm4f6TCP29sr1QMDNJVpmSdU2CvfPwCv3
         vLOjOEptMhqR4CJ+xe+ioz3lNzCl2EZHgpNmYEfUvZfO4HNbfAJeVGD7Y6+NwidzXc+4
         WwhCJ12AcpS+YcDpNxPhRBMoL57+cUKM7XyAFXr8UOlk5Gczeb1tdIz88rRi1CvuV8Aw
         GteXlM8bx8asQtCf3L8N7q+X2joiDWwoPsRT30r+2JalVPh26Gkh3yZwCce7KUZ2zsIj
         4xsQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date;
        bh=IhkIx9bfEwuHjm2c3Stp9MqgUzc3aCtt8Id2Mqwxlco=;
        b=nI2nH+Tdt/H/fzx8NpQjTlUWIjR4xcP151tJ2aFe+c3gA4ExvznPNcMd85kay5OPM1
         a79jMLS6Ekvmojh+kmmRH9zxIFJI1P/Icr2vW6VU7/g2bcAQvzf7f6Xt83FeFciSr5Zm
         zhDCRz2Dmx0eG8RSywLy2pk+ceQB3UfXmI1hLP/3RbSckqYMV5frA5i4dprFmyMZC8ig
         nd1h4DsmauPDgbmRAC2kJjj58CWbkwPDOsnJ1U7/0/rdlv+eO+Iyx/jEF7CmIEOXNYN7
         4tsDACyrr8xDNcwahOd//0arufLCw3jke8t0MZldyPND3MshzoWDvOzXAUmnM50ET+d7
         IOfw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id c191-v6si12606827pga.402.2018.10.06.12.43.34;
        Sat, 06 Oct 2018 12:43:50 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728015AbeJGCrv (ORCPT <rfc822;tluu11sec@gmail.com> + 99 others);
        Sat, 6 Oct 2018 22:47:51 -0400
Received: from mx1.redhat.com ([209.132.183.28]:33402 "EHLO mx1.redhat.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1726204AbeJGCru (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 6 Oct 2018 22:47:50 -0400
Received: from smtp.corp.redhat.com (int-mx06.intmail.prod.int.phx2.redhat.com [10.5.11.16])
        (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
        (No client certificate requested)
        by mx1.redhat.com (Postfix) with ESMTPS id 773CB308212B;
        Sat,  6 Oct 2018 19:43:18 +0000 (UTC)
Received: from asgard.redhat.com (ovpn-200-33.brq.redhat.com [10.40.200.33])
        by smtp.corp.redhat.com (Postfix) with ESMTPS id CA0DE171F8;
        Sat,  6 Oct 2018 19:43:16 +0000 (UTC)
Date:   Sat, 6 Oct 2018 21:43:48 +0200
From:   Eugene Syromiatnikov <esyr@redhat.com>
To:     "Jason A. Donenfeld" <Jason@zx2c4.com>
Cc:     linux-kernel@vger.kernel.org, netdev@vger.kernel.org,
        davem@davemloft.net, gregkh@linuxfoundation.org
Subject: Re: [PATCH net-next v7 28/28] net: WireGuard secure network tunnel
Message-ID: <20181006194348.GK32759@asgard.redhat.com>
References: <20181006025709.4019-1-Jason@zx2c4.com>
 <20181006025709.4019-29-Jason@zx2c4.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20181006025709.4019-29-Jason@zx2c4.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
X-Scanned-By: MIMEDefang 2.79 on 10.5.11.16
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.42]); Sat, 06 Oct 2018 19:43:18 +0000 (UTC)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Sat, Oct 06, 2018 at 04:57:09AM +0200, Jason A. Donenfeld wrote:
> +static int get_allowedips(void *ctx, const u8 *ip, u8 cidr, int family)
> +{
> +	struct allowedips_ctx *actx = ctx;
> +	struct nlattr *allowedip_nest;
> +
> +	allowedip_nest = nla_nest_start(actx->skb, actx->i++);

Second parameter of nl_nest_start is an attribute type; (ab)using it as
array index leads to special handling of such structures in parsers.
It's better to have some type like WGDEVICE_A_PEER_ITEM and provide an
additional attribute inside it for index (WGPEER_A_INDEX?).
See, for example, commit v4.12-rc1~119^2~131 ("nbd: add a status netlink
command").

> +static int get_peer(struct wireguard_peer *peer, unsigned int index,
> +		    struct allowedips_cursor *rt_cursor, struct sk_buff *skb)
> +{
> +	struct nlattr *allowedips_nest, *peer_nest = nla_nest_start(skb, index);

Same here.