]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d41f495) | patch
netfilter: conntrack: timeout interface depend on CONFIG_NF_CONNTRACK_TIMEOUT
authorPablo Neira Ayuso <pablo@netfilter.org>
Fri, 31 Aug 2018 10:36:01 +0000 (12:36 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 10 Sep 2018 23:30:25 +0000 (01:30 +0200)
commit4d883997cac0b61af0e3df04e420749dab1395df
treeb75399c279a8666419f095d4f76d71820550182ctree | snapshot
parentd41f49584071f9a7effd1d1cb3d2d61abde2d863commit | diff
netfilter: conntrack: timeout interface depend on CONFIG_NF_CONNTRACK_TIMEOUT

Now that cttimeout support for nft_ct is in place, these should depend
on CONFIG_NF_CONNTRACK_TIMEOUT otherwise we can crash when dumping the
policy if this option is not enabled.

[   71.600121] BUG: unable to handle kernel NULL pointer dereference at 0000000000000000
[...]
[   71.600141] CPU: 3 PID: 7612 Comm: nft Not tainted 4.18.0+ #246
[...]
[   71.600188] Call Trace:
[   71.600201]  ? nft_ct_timeout_obj_dump+0xc6/0xf0 [nft_ct]

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_conntrack_proto_dccp.c diff | blob | history
net/netfilter/nf_conntrack_proto_generic.c diff | blob | history
net/netfilter/nf_conntrack_proto_gre.c diff | blob | history
net/netfilter/nf_conntrack_proto_icmp.c diff | blob | history
net/netfilter/nf_conntrack_proto_icmpv6.c diff | blob | history
net/netfilter/nf_conntrack_proto_sctp.c diff | blob | history
net/netfilter/nf_conntrack_proto_tcp.c diff | blob | history
net/netfilter/nf_conntrack_proto_udp.c diff | blob | history
Linux Kernel Source Tree.