git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Florian Westphal <fw@strlen.de>
	Wed, 9 Jul 2025 17:05:13 +0000 (19:05 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 19 Sep 2025 14:37:37 +0000 (16:37 +0200)
commit	06f714dbe6f35f7d345bdc1148131f92ed1e6a36
tree	99025b7187843a4498657019d4c4d1fb539eb18e	tree \| snapshot
parent	52f951a0ed367e517b38c2e7b9aa1b6d8774392c	commit \| diff

netfilter: nft_set: remove one argument from lookup and update functions

[ Upstream commit 17a20e09f086f2c574ac87f3cf6e14c4377f65f6 ]

Return the extension pointer instead of passing it as a function
argument to be filled in by the callee.

As-is, whenever false is returned, the extension pointer is not used.

For all set types, when true is returned, the extension pointer was set
to the matching element.

Only exception: nft_set_bitmap doesn't support extensions.
Return a pointer to a static const empty element extension container.

return false -> return NULL
return true -> return the elements' extension pointer.

This saves one function argument.

Signed-off-by: Florian Westphal <fw@strlen.de>
Reviewed-by: Stefano Brivio <sbrivio@redhat.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Stable-dep-of: c4eaca2e1052 ("netfilter: nft_set_pipapo: don't check genbit from packetpath lookups")
Signed-off-by: Sasha Levin <sashal@kernel.org>

include/net/netfilter/nf_tables.h		diff \| blob \| blame \| history
include/net/netfilter/nf_tables_core.h		diff \| blob \| blame \| history
net/netfilter/nft_dynset.c		diff \| blob \| blame \| history
net/netfilter/nft_lookup.c		diff \| blob \| blame \| history
net/netfilter/nft_objref.c		diff \| blob \| blame \| history
net/netfilter/nft_set_bitmap.c		diff \| blob \| blame \| history
net/netfilter/nft_set_hash.c		diff \| blob \| blame \| history
net/netfilter/nft_set_pipapo.c		diff \| blob \| blame \| history
net/netfilter/nft_set_pipapo_avx2.c		diff \| blob \| blame \| history
net/netfilter/nft_set_rbtree.c		diff \| blob \| blame \| history