netfilter: nf_conntrack: do not skip entries in /proc/net/nf_conntrack

edumazet · gregkh · commit 18986319edb0 · 2025-10-15T12:04:08.000+02:00
[ Upstream commit c5ba345 ] ct_seq_show() has an opportunistic garbage collector : if (nf_ct_should_gc(ct)) { nf_ct_kill(ct); goto release; } So if one nf_conn is killed there, next time ct_get_next() runs, we skip the following item in the bucket, even if it should have been displayed if gc did not take place. We can decrement st->skip_elems to tell ct_get_next() one of the items was removed from the chain. Fixes: 58e207e ("netfilter: evict stale entries when user reads /proc/net/nf_conntrack") Signed-off-by: Eric Dumazet <edumazet@google.com> Signed-off-by: Florian Westphal <fw@strlen.de> Signed-off-by: Sasha Levin <sashal@kernel.org>
diff --git a/net/netfilter/nf_conntrack_standalone.c b/net/netfilter/nf_conntrack_standalone.c
@@ -317,6 +317,9 @@ static int ct_seq_show(struct seq_file *s, void *v)
 	smp_acquire__after_ctrl_dep();
 
 	if (nf_ct_should_gc(ct)) {
+		struct ct_iter_state *st = s->private;
+
+		st->skip_elems--;
 		nf_ct_kill(ct);
 		goto release;
 	}

Original file line number	Diff line number	Diff line change
`@@ -317,6 +317,9 @@ static int ct_seq_show(struct seq_file s, void v)`
`317`	`317`	`smp_acquire__after_ctrl_dep();`
`318`	`318`
`319`	`319`	`if (nf_ct_should_gc(ct)) {`
	`320`	`+ struct ct_iter_state *st = s->private;`
	`321`	`+`
	`322`	`+ st->skip_elems--;`
`320`	`323`	`nf_ct_kill(ct);`
`321`	`324`	`goto release;`
`322`	`325`	`}`