diff options
| author | HsiuWen Yen <y.hsiuwen@gmail.com> | 2019-06-21 00:44:42 +0800 |
|---|---|---|
| committer | Petr Štetiar <ynezz@true.cz> | 2019-06-24 18:34:04 +0200 |
| commit | d344591e72e5ca96a2bf70a2df38961553185ce8 (patch) | |
| tree | d4ef4d3600c587bddd60a934657b0b51119d6f78 /target/linux/brcm47xx/generic/target.mk | |
| parent | 545bfbc3a922facfe52e9397da56605be33ff49a (diff) | |
| download | upstream-d344591e72e5ca96a2bf70a2df38961553185ce8.tar.gz upstream-d344591e72e5ca96a2bf70a2df38961553185ce8.tar.bz2 upstream-d344591e72e5ca96a2bf70a2df38961553185ce8.zip | |
netfilter: fix crash in flow offload by adding netns support
Commit fcb41decf6c6 ("config: enable some useful features on
!SMALL_FLASH devices") enabled netns, which in turn lead to the crash in
the flow offload target.
When the flow offloading framework intends to delete a flow from the
hardware table, it is necessary to retrieve the namespace from
nf_flowtable->ft_net. However, no one ever wrote the namespace into
nf_flowtable->ft_net in advance. So the framework will mistakenly use a
NULL namespace to execute dev_get_by_index_rcu(net, ifindex), leading to
the kernel panic.
Ref: FS#2321
Fixes: fcb41decf6c6 ("config: enable some useful features on !SMALL_FLASH devices")
Tested-by: Simon Tretter <simon@mediaarchitectu.re>
Signed-off-by: HsiuWen Yen <y.hsiuwen@gmail.com>
[merged patch into offload patch, fix for 4.19, SOB fix, commit subj/msg touches]
Signed-off-by: Petr Štetiar <ynezz@true.cz>
Diffstat (limited to 'target/linux/brcm47xx/generic/target.mk')
0 files changed, 0 insertions, 0 deletions