]> git.itanic.dy.fi Git - linux-stable/commit
projects / linux-stable / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3fb61ec) | patch
netfilter: nft_dynset: do not reject set updates with NFT_SET_EVAL
authorPablo Neira Ayuso <pablo@netfilter.org>
Mon, 11 Jun 2018 15:18:29 +0000 (17:18 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 12 Jun 2018 17:12:48 +0000 (19:12 +0200)
commit215a31f19dedd4e92a67cf5a9717ee898d012b3a
tree997446c43106f7d0bf1ddfdbad73a9bfa17f2371tree | snapshot
parent3fb61eca185cc65a1be23d9a5a11347eef79f597commit | diff
netfilter: nft_dynset: do not reject set updates with NFT_SET_EVAL

NFT_SET_EVAL is signalling the kernel that this sets can be updated from
the evaluation path, even if there are no expressions attached to the
element. Otherwise, set updates with no expressions fail. Update
description to describe the right semantics.

Fixes: 22fe54d5fefc ("netfilter: nf_tables: add support for dynamic set updates")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/uapi/linux/netfilter/nf_tables.h diff | blob | history
net/netfilter/nft_dynset.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.