netfilter: nf_tables: add NFTA_SET_USERDATA if not null

[ Upstream commit 6f03bf43 ] Kernel sends an empty NFTA_SET_USERDATA attribute with no value if userspace adds a set with no NFTA_SET_USERDATA attribute. Fixes: e6d8ecac ("netfilter: nf_tables: Add new attributes into nft_set to store user data.") Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> Signed-off-by: Sasha Levin <sashal@kernel.org>

netfilter: nf_tables: add NFTA_SET_USERDATA if not null
[ Upstream commit 6f03bf43 ] Kernel sends an empty NFTA_SET_USERDATA attribute with no value if userspace adds a set with no NFTA_SET_USERDATA attribute. Fixes: e6d8ecac ("netfilter: nf_tables: Add new attributes into nft_set to store user data.") Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> Signed-off-by: Sasha Levin <sashal@kernel.org>
88c16159 · Pablo Neira Ayuso · Greg Kroah-Hartman · 3e2dae22 · 88c16159
Commit 88c16159 authored Aug 20, 2020 by Pablo Neira Ayuso Committed by Greg Kroah-Hartman Sep 09, 2020
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 1 deletion

net/netfilter/nf_tables_api.c net/netfilter/nf_tables_api.c +2 -1

No files found.
--- a/net/netfilter/nf_tables_api.c
+++ b/net/netfilter/nf_tables_api.c
@@ -3204,7 +3204,8 @@ static int nf_tables_fill_set(struct sk_buff *skb, const struct nft_ctx *ctx,
 			goto nla_put_failure;
 	}

-	if (nla_put(skb, NFTA_SET_USERDATA, set->udlen, set->udata))
+	if (set->udata &&
+	    nla_put(skb, NFTA_SET_USERDATA, set->udlen, set->udata))
 		goto nla_put_failure;

 	desc = nla_nest_start(skb, NFTA_SET_DESC);