[RHEL9.5 P1] netfilter: nft_set_pipapo: backports from upstream
JIRA: https://issues.redhat.com/browse/RHEL-33380 JIRA: https://issues.redhat.com/browse/RHEL-34223 CVE: CVE-2024-26924
There are >30 bug fixes pending in netfilter area, split those up into logical chunks to ease review. These are bug fixes for the concatenated set type. More recent updates to reduce data structures etc. have been omitted. I also only considered those changes that are self-contained (i.e., do not depend on other changes in nf_tables core infrastructure).
Signed-off-by: Florian Westphal fwestpha@redhat.com
Edited by Phil Sutter