UPSTREAM: netfilter: nf_tables: check if catch-all set element is active in next generation (7dc3b2e4) · Commits · linux-arm / linux-power · GitLab

Commit 7dc3b2e4 authored Jan 12, 2024 by Pablo Neira Ayuso Committed by Todd Kjos Feb 13, 2024

UPSTREAM: netfilter: nf_tables: check if catch-all set element is active in next generation



commit b1db244f upstream.

When deactivating the catch-all set element, check the state in the next
generation that represents this transaction.

This bug uncovered after the recent removal of the element busy mark
a2dd0233 ("netfilter: nf_tables: remove busy mark and gc batch API").

Bug: 323034444
Fixes: aaa31047 ("netfilter: nftables: add catch-all set element support")
Cc: stable@vger.kernel.org
Reported-by: lonial con <kongln9170@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
(cherry picked from commit a372f1d0)
Signed-off-by: Lee Jones <joneslee@google.com>
Change-Id: I40ac92a33db48a2709079d27d7d529946ba297c7

parent 8d4d76a2

Hide whitespace changes

Inline Side-by-side

Lukasz Luba @Lukasz.Luba
mentioned in commit 6e04c1cc
· Feb 11, 2025

mentioned in commit 6e04c1cc

mentioned in commit 6e04c1ccf717963cef58ab94be47909d76f732c0

Toggle commit list

Please register or to comment