netfilter: nf_tables: revert commit_mutex usage in reset path - linux - Mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/

diff options

author	Brian Witte <brianwitte@mailfence.com>	2026-02-04 14:26:36 -0600
committer	Florian Westphal <fw@strlen.de>	2026-02-17 15:04:20 +0100
commit	7f261bb906bf527c4a6e2a646e2d5f3679f2a8bc (patch)
tree	941499110e629eb9b7caf9415af44430b5cd6a8f /include
parent	30c4d7fb59ac4c8d7fa7937df11eed10b368fa11 (diff)
download	linux-7f261bb906bf527c4a6e2a646e2d5f3679f2a8bc.tar.gz linux-7f261bb906bf527c4a6e2a646e2d5f3679f2a8bc.zip

netfilter: nf_tables: revert commit_mutex usage in reset path

It causes circular lock dependency between commit_mutex, nfnl_subsys_ipset and nlk_cb_mutex when nft reset, ipset list, and iptables-nft with '-m set' rule run at the same time. Previous patches made it safe to run individual reset handlers concurrently so commit_mutex is no longer required to prevent this. Fixes: bd662c4218f9 ("netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests") Fixes: 3d483faa6663 ("netfilter: nf_tables: Add locking for NFT_MSG_GETSETELEM_RESET requests") Fixes: 3cb03edb4de3 ("netfilter: nf_tables: Add locking for NFT_MSG_GETRULE_RESET requests") Link: https://lore.kernel.org/all/aUh_3mVRV8OrGsVo@strlen.de/ Reported-by: <syzbot+ff16b505ec9152e5f448@syzkaller.appspotmail.com> Closes: https://syzkaller.appspot.com/bug?extid=ff16b505ec9152e5f448 Signed-off-by: Brian Witte <brianwitte@mailfence.com> Signed-off-by: Florian Westphal <fw@strlen.de>

Diffstat (limited to 'include')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: