Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf
Pablo Neira Ayuso says: ==================== Netfilter fixes for net 1) Add SECMARK revision 1 to fix incorrect layout that prevents from remove rule with this target, from Phil Sutter. 2) Fix pernet exit path spat in arptables, from Florian Westphal. 3) Missing rcu_read_unlock() for unknown nfnetlink callbacks, reported by syzbot, from Eric Dumazet. 4) Missing check for skb_header_pointer() NULL pointer in nfnetlink_osf. 5) Remove BUG_ON() after skb_header_pointer() from packet path in several conntrack helper and the TCP tracker. 6) Fix memleak in the new object error path of userdata. 7) Avoid overflows in nft_hash_buckets(), reported by syzbot, also from Eric. 8) Avoid overflows in 32bit arches, from Eric. * git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf: netfilter: nftables: avoid potential overflows on 32bit arches netfilter: nftables: avoid overflows in nft_hash_buckets() netfilter: nftables: Fix a memleak from userdata error path in new objects netfilter: remove BUG_ON() after skb_header_pointer() netfilter: nfnetlink_osf: Fix a missing skb_header_pointer() NULL check netfilter: nfnetlink: add a missing rcu_read_unlock() netfilter: arptables: use pernet ops struct during unregister netfilter: xt_SECMARK: add new revision to fix structure layout ==================== Link: https://lore.kernel.org/r/20210507174739.1850-1-pablo@netfilter.org Signed-off-by:Jakub Kicinski <kuba@kernel.org>
No related branches found
No related tags found
Showing
- include/linux/netfilter_arp/arp_tables.h 1 addition, 2 deletionsinclude/linux/netfilter_arp/arp_tables.h
- include/uapi/linux/netfilter/xt_SECMARK.h 6 additions, 0 deletionsinclude/uapi/linux/netfilter/xt_SECMARK.h
- net/ipv4/netfilter/arp_tables.c 2 additions, 3 deletionsnet/ipv4/netfilter/arp_tables.c
- net/ipv4/netfilter/arptable_filter.c 1 addition, 1 deletionnet/ipv4/netfilter/arptable_filter.c
- net/netfilter/nf_conntrack_ftp.c 4 additions, 1 deletionnet/netfilter/nf_conntrack_ftp.c
- net/netfilter/nf_conntrack_h323_main.c 2 additions, 1 deletionnet/netfilter/nf_conntrack_h323_main.c
- net/netfilter/nf_conntrack_irc.c 4 additions, 1 deletionnet/netfilter/nf_conntrack_irc.c
- net/netfilter/nf_conntrack_pptp.c 3 additions, 1 deletionnet/netfilter/nf_conntrack_pptp.c
- net/netfilter/nf_conntrack_proto_tcp.c 4 additions, 2 deletionsnet/netfilter/nf_conntrack_proto_tcp.c
- net/netfilter/nf_conntrack_sane.c 4 additions, 1 deletionnet/netfilter/nf_conntrack_sane.c
- net/netfilter/nf_tables_api.c 7 additions, 4 deletionsnet/netfilter/nf_tables_api.c
- net/netfilter/nfnetlink.c 1 addition, 0 deletionsnet/netfilter/nfnetlink.c
- net/netfilter/nfnetlink_osf.c 2 additions, 0 deletionsnet/netfilter/nfnetlink_osf.c
- net/netfilter/nft_set_hash.c 14 additions, 6 deletionsnet/netfilter/nft_set_hash.c
- net/netfilter/xt_SECMARK.c 69 additions, 19 deletionsnet/netfilter/xt_SECMARK.c
Loading
Please register or sign in to comment