diff options
| author | Florian Westphal <fw@strlen.de> | 2024-11-04 10:41:18 +0100 |
|---|---|---|
| committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2024-12-05 14:01:52 +0100 |
| commit | f9028bc35cca1a6cd14e7681675786643d39c600 (patch) | |
| tree | 5b9ab3daf51be8a7dd4fc06f2f24f09765a0a3e0 /include/uapi/linux | |
| parent | 30ebd4c17ac3049bfe20badc5abc347d6e417034 (diff) | |
| download | linux-f9028bc35cca1a6cd14e7681675786643d39c600.tar.gz linux-f9028bc35cca1a6cd14e7681675786643d39c600.tar.bz2 linux-f9028bc35cca1a6cd14e7681675786643d39c600.zip | |
netfilter: nf_tables: must hold rcu read lock while iterating expression type list
[ Upstream commit ee666a541ed957937454d50afa4757924508cd74 ]
nft shell tests trigger:
WARNING: suspicious RCU usage
net/netfilter/nf_tables_api.c:3125 RCU-list traversed in non-reader section!!
1 lock held by nft/2068:
#0: ffff888106c6f8c8 (&nft_net->commit_mutex){+.+.}-{4:4}, at: nf_tables_valid_genid+0x3c/0xf0
But the transaction mutex doesn't protect this list, the nfnl subsystem
mutex would, but we can't acquire it here without risk of ABBA
deadlocks.
Acquire the rcu read lock to avoid this issue.
v3: add a comment that explains the ->inner_ops check implies
expression is builtin and lack of a module owner reference is ok.
Fixes: 3a07327d10a0 ("netfilter: nft_inner: support for inner tunnel header matching")
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
Diffstat (limited to 'include/uapi/linux')
0 files changed, 0 insertions, 0 deletions