Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net

author Jakub Kicinski <kuba@kernel.org>

Thu, 11 Jul 2024 19:57:57 +0000 (12:57 -0700)

committer Jakub Kicinski <kuba@kernel.org>

Thu, 11 Jul 2024 19:58:13 +0000 (12:58 -0700)
author Jakub Kicinski <kuba@kernel.org>
Thu, 11 Jul 2024 19:57:57 +0000 (12:57 -0700)
committer Jakub Kicinski <kuba@kernel.org>
Thu, 11 Jul 2024 19:58:13 +0000 (12:58 -0700)
diff --cc MAINTAINERS
Simple merge
diff --cc drivers/net/ethernet/broadcom/bnxt/bnxt.c
Simple merge
diff --cc drivers/net/ethernet/broadcom/bnxt/bnxt.h
Simple merge
diff --cc drivers/net/ethernet/broadcom/bnxt/bnxt_ethtool.c
Simple merge
diff --cc drivers/net/ethernet/marvell/octeontx2/af/rvu.c
Simple merge
diff --cc include/linux/sched.h
Simple merge
diff --cc kernel/bpf/helpers.c
Simple merge
diff --cc net/core/datagram.c
Simple merge
diff --cc net/ipv4/tcp_input.c
Simple merge
diff --cc net/ipv4/tcp_timer.c
Simple merge
diff --cc net/ipv4/udp.c
Simple merge
diff --cc net/netfilter/nf_tables_api.c
Simple merge
diff --cc net/sched/act_ct.c

index a6b7c51,6fa3cca..113b907
--- 1/net/sched/act_ct.c
--- 2/net/sched/act_ct.c
+++ b/net/sched/act_ct.c
@@@ -1078,9 -1075,16 +1078,17 @@@ do_nat
                 /* This will take care of sending queued events
                  * even if the connection is already confirmed.
                  */
- -              if (nf_conntrack_confirm(skb) != NF_ACCEPT)
- -                      goto drop;
+ +              err = nf_conntrack_confirm(skb);
+ +              if (err != NF_ACCEPT)
+ +                      goto nf_error;
+ 
+               /* The ct may be dropped if a clash has been resolved,
+                * so it's necessary to retrieve it from skb again to
+                * prevent UAF.
+                */
+               ct = nf_ct_get(skb, &ctinfo);
+               if (!ct)
+                       skip_add = true;
         }
   
         if (!skip_add)
diff --cc tools/testing/selftests/bpf/config
Simple merge
author	Jakub Kicinski <kuba@kernel.org>
	Thu, 11 Jul 2024 19:57:57 +0000 (12:57 -0700)
committer	Jakub Kicinski <kuba@kernel.org>
	Thu, 11 Jul 2024 19:58:13 +0000 (12:58 -0700)
		1	2
MAINTAINERS	patch \|	diff1 \|	diff2 \|	blob \| history
drivers/net/ethernet/broadcom/bnxt/bnxt.c	patch \|	diff1 \|	diff2 \|	blob \| history
drivers/net/ethernet/broadcom/bnxt/bnxt.h	patch \|	diff1 \|	diff2 \|	blob \| history
drivers/net/ethernet/broadcom/bnxt/bnxt_ethtool.c	patch \|	diff1 \|	diff2 \|	blob \| history
drivers/net/ethernet/marvell/octeontx2/af/rvu.c	patch \|	diff1 \|	diff2 \|	blob \| history
include/linux/sched.h	patch \|	diff1 \|	diff2 \|	blob \| history
kernel/bpf/helpers.c	patch \|	diff1 \|	diff2 \|	blob \| history
net/core/datagram.c	patch \|	diff1 \|	diff2 \|	blob \| history
net/ipv4/tcp_input.c	patch \|	diff1 \|	diff2 \|	blob \| history
net/ipv4/tcp_timer.c	patch \|	diff1 \|	diff2 \|	blob \| history
net/ipv4/udp.c	patch \|	diff1 \|	diff2 \|	blob \| history
net/netfilter/nf_tables_api.c	patch \|	diff1 \|	diff2 \|	blob \| history
net/sched/act_ct.c	patch \|	diff1 \|	diff2 \|	blob \| history
tools/testing/selftests/bpf/config	patch \|	diff1 \|	diff2 \|	blob \| history