review.tizen.org Git - platform/kernel/linux-starfive.git/commit

author	Pablo Neira Ayuso <pablo@netfilter.org>
	Fri, 16 Jun 2023 12:51:49 +0000 (14:51 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Wed, 28 Jun 2023 09:12:32 +0000 (11:12 +0200)
commit	d60be2da67d172aecf866302c91ea11533eca4d9
tree	55312a3866657eda94a32d5a455f12c3c09d171e	tree \| snapshot
parent	df27be7c15301ea33ddaafc8d5db9bbe29bd930d	commit \| diff

netfilter: nf_tables: drop map element references from preparation phase

[ Upstream commit 628bd3e49cba1c066228e23d71a852c23e26da73 ]

set .destroy callback releases the references to other objects in maps.
This is very late and it results in spurious EBUSY errors. Drop refcount
from the preparation phase instead, update set backend not to drop
reference counter from set .destroy path.

Exceptions: NFT_TRANS_PREPARE_ERROR does not require to drop the
reference counter because the transaction abort path releases the map
references for each element since the set is unbound. The abort path
also deals with releasing reference counter for new elements added to
unbound sets.

Fixes: 591054469b3e ("netfilter: nf_tables: revisit chain/object refcounting from elements")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>

include/net/netfilter/nf_tables.h		diff \| blob \| history
net/netfilter/nf_tables_api.c		diff \| blob \| history
net/netfilter/nft_set_bitmap.c		diff \| blob \| history
net/netfilter/nft_set_hash.c		diff \| blob \| history
net/netfilter/nft_set_pipapo.c		diff \| blob \| history
net/netfilter/nft_set_rbtree.c		diff \| blob \| history