git.ipfire.org Git - thirdparty/ipset.git/commit

]> git.ipfire.org Git - thirdparty/ipset.git/commit

projects / thirdparty / ipset.git / commit

author	Jozsef Kadlecsik <kadlec@netfilter.org>
	Mon, 11 Dec 2023 10:30:30 +0000 (11:30 +0100)
committer	Jozsef Kadlecsik <kadlec@netfilter.org>
	Mon, 11 Dec 2023 10:30:30 +0000 (11:30 +0100)
commit	b15dd2752a2d666358a42285528805bf2835f6c6
tree	445f8fa3ed851fb347896355fb03849b258512be	tree
parent	74f6e7b96229c6fd2a0e5fb8bb75e81b3fde9a59	commit \| diff

netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test v3

Florian Westphal pointed out that all netfilter hooks run with rcu_read_lock() held
and em_ipset.c wraps the entire ip_set_test() in rcu read lock/unlock pair.
So there's no need to extend the rcu read locked area in ipset itself.

Signed-off-by: Jozsef Kadlecsik <kadlec@netfilter.org>

kernel/net/netfilter/ipset/ip_set_core.c

diff | blob | blame | history

Mirror of git://git.netfilter.org/ipset

RSS Atom