Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf

Pablo Neira Ayuso says: ==================== Netfilter fixes for net The following patchset contains Netfilter fixes for net: 1) Fix UAF in set catch-all element, from Eric Dumazet. 2) Fix MAC mangling for multicast/loopback traffic in nfnetlink_queue and nfnetlink_log, from Ignacy Gawędzki. 3) Remove expired entries from ctnetlink dump path regardless the tuple direction, from Florian Westphal. ==================== Signed-off-by: David S. Miller <davem@davemloft.net>
author: David S. Miller <davem@davemloft.net> 2021-12-17 10:52:04 +0000
committer: David S. Miller <davem@davemloft.net> 2021-12-17 10:52:04 +0000
commit: 8ca4090fec0217bcb89531c8be80fcfa66a397a1 (patch)
tree: 50c8ddf240bad6c1bce9c282902034212fc49a29 /net/netfilter/nfnetlink_log.c
parent: b62e3317b68d9c84301940ca8ca9c35a584111b2 (diff)
parent: 76f12e632a15a20c8de3532d64a0708cf0e32f11 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/net/netfilter/nfnetlink_log.c b/net/netfilter/nfnetlink_log.c
index 691ef4cffdd9..7f83f9697fc1 100644
--- a/net/netfilter/nfnetlink_log.c
+++ b/net/netfilter/nfnetlink_log.c
@@ -556,7 +556,8 @@ __build_packet_message(struct nfnl_log_net *log,
 		goto nla_put_failure;
 
 	if (indev && skb->dev &&
-	    skb->mac_header != skb->network_header) {
+	    skb_mac_header_was_set(skb) &&
+	    skb_mac_header_len(skb) != 0) {
 		struct nfulnl_msg_packet_hw phw;
 		int len;
author	David S. Miller <davem@davemloft.net>	2021-12-17 10:52:04 +0000
committer	David S. Miller <davem@davemloft.net>	2021-12-17 10:52:04 +0000
commit	8ca4090fec0217bcb89531c8be80fcfa66a397a1 (patch)
tree	50c8ddf240bad6c1bce9c282902034212fc49a29 /net/netfilter/nfnetlink_log.c
parent	b62e3317b68d9c84301940ca8ca9c35a584111b2 (diff)
parent	76f12e632a15a20c8de3532d64a0708cf0e32f11 (diff)