diff options
| author |   Yuan Tan <tanyuan98@outlook.com> | 2026-03-09 03:41:46 -0700 |
|---|---|---|
| committer |   Florian Westphal <fw@strlen.de> | 2026-03-10 14:10:43 +0100 |
| commit | 329f0b9b48ee6ab59d1ab72fef55fe8c6463a6cf (patch) | |
| tree | de73cfae04359fba41bbb3f04e17969986b9a781 /tools/testing/ktest/examples/include/ssh:/git@git.zx2c4.com | |
| parent | netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table() (diff) | |
netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels
IDLETIMER revision 0 rules reuse existing timers by label and always call
mod_timer() on timer->timer.
If the label was created first by revision 1 with XT_IDLETIMER_ALARM,
the object uses alarm timer semantics and timer->timer is never initialized.
Reusing that object from revision 0 causes mod_timer() on an uninitialized
timer_list, triggering debugobjects warnings and possible panic when
panic_on_warn=1.
Fix this by rejecting revision 0 rule insertion when an existing timer with
the same label is of ALARM type.
Fixes: 68983a354a65 ("netfilter: xtables: Add snapshot of hardidletimer target")
Co-developed-by: Yifan Wu <yifanwucs@gmail.com>
Signed-off-by: Yifan Wu <yifanwucs@gmail.com>
Co-developed-by: Juefei Pu <tomapufckgml@gmail.com>
Signed-off-by: Juefei Pu <tomapufckgml@gmail.com>
Signed-off-by: Yuan Tan <tanyuan98@outlook.com>
Signed-off-by: Xin Liu <dstsmallbird@foxmail.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Diffstat (limited to 'tools/testing/ktest/examples/include/ssh:/git@git.zx2c4.com')
0 files changed, 0 insertions, 0 deletions