Hi David,
The following patchset contains Netfilter fixes for your net tree,
they are:
1) Conntrack SCTP CRC32c checksum mangling may operate on non-linear
skbuff, patch from Davide Caratti.
2) nf_tables rb-tree set backend does not handle element re-addition
after deletion in the same transaction, leading to infinite loop.
3) Atomically unclear the IPS_SRC_NAT_DONE_BIT on nat module removal,
from Liping Zhang.
4) Conntrack hashtable resizing while ctnetlink dump is progress leads
to a dead reference to released objects in the lists, also from
Liping.
You can pull these changes from:
git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf.git
Thanks!
----------------------------------------------------------------
The following changes since commit 6d18c732b95c0a9d35e9f978b4438bba15412284:
bridge: start hello_timer when enabling KERNEL_STP in br_stp_start
(2017-05-21 13:33:28 -0400)
are available in the git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf.git HEAD
for you to fetch changes up to fefa92679dbe0c613e62b6c27235dcfbe9640ad1:
netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize (2017-05-24
11:26:01 +0200)
----------------------------------------------------------------
Davide Caratti (1):
netfilter: conntrack: fix false CRC32c mismatch using paged skb
Liping Zhang (2):
netfilter: nat: use atomic bit op to clear the _SRC_NAT_DONE_BIT
netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
Pablo Neira Ayuso (1):
netfilter: nft_set_rbtree: handle element re-addition after deletion
net/netfilter/nf_conntrack_netlink.c | 7 ++++++-
net/netfilter/nf_conntrack_proto_sctp.c | 9 ++++++---
net/netfilter/nf_nat_core.c | 2 +-
net/netfilter/nft_set_rbtree.c | 22 +++++++++++-----------
4 files changed, 24 insertions(+), 16 deletions(-)
