git.ipfire.org Git - thirdparty/kernel/stable.git/commit

]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit

projects / thirdparty / kernel / stable.git / commit

author	Florian Westphal <fw@strlen.de>
	Thu, 7 Jul 2022 19:30:56 +0000 (21:30 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Wed, 20 Jul 2022 22:55:39 +0000 (00:55 +0200)
commit	f02e7dc4cff80ee882dbc6e207e054f841e4c2e1
tree	7a0230e3e7290b04d7cc41b0acf49a4ffb34d7a5	tree
parent	5787db7c905323cb303a7c39d15fb2067e948adf	commit \| diff

netfilter: flowtable: prefer refcount_inc

With refcount_inc_not_zero, we'd also need a smp_rmb or similar,
followed by a test of the CONFIRMED bit.

However, the ct pointer is taken from skb->_nfct, its refcount must
not be 0 (else, we'd already have a use-after-free bug).

Use refcount_inc() instead to clarify the ct refcount is expected to
be at least 1.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

net/netfilter/nf_flow_table_core.c

diff | blob | blame | history

Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

RSS Atom