Message ID | 20210103192920.18639-1-pablo@netfilter.org |
---|---|
Headers | show |
Series | Netfilter fixes for net | expand |
On Sun, 3 Jan 2021 20:29:17 +0100 Pablo Neira Ayuso wrote: > Hi Jakub, David, > > The following patchset contains Netfilter fixes for net: > > 1) Missing sanitization of rateest userspace string, bug has been > triggered by syzbot, patch from Florian Westphal. > > 2) Report EOPNOTSUPP on missing set features in nft_dynset, otherwise > error reporting to userspace via EINVAL is misleading since this is > reserved for malformed netlink requests. > > 3) New binaries with old kernels might silently accept several set > element expressions. New binaries set on the NFT_SET_EXPR and > NFT_DYNSET_F_EXPR flags to request for several expressions per > element, hence old kernels which do not support for this bail out > with EOPNOTSUPP. > > Please, pull these changes from: > > git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf.git Pulled, thanks! > P.S: Best wishes for 2021. Happy 2021!