From: Eyal Birger <eyal.bir...@gmail.com> Date: Tue, 23 Jan 2018 11:17:32 +0200
> + network_offset = skb_network_offset(skb); > + skb_pull(skb, network_offset); > + > + rcu_read_lock(); > + > + if (skb->skb_iif) > + indev = dev_get_by_index_rcu(em->net, skb->skb_iif); > + > + nf_hook_state_init(&state, im->hook, im->nfproto, indev ?: skb->dev, > + skb->dev, NULL, em->net, NULL); > + > + acpar.match = im->match; > + acpar.matchinfo = im->match_data; > + acpar.state = &state; > + > + ret = im->match->match(skb, &acpar); > + > + rcu_read_unlock(); > + > + skb_push(skb, network_offset); If the SKB is shared in any way, this pull/push around the NF hook invocation is illegal.
