netfilter: ipset: list:set: fix reference counter update

author Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>

Tue, 9 Apr 2013 08:57:19 +0000 (08:57 +0000)

committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Sat, 11 May 2013 20:53:54 +0000 (13:53 -0700)
author Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Tue, 9 Apr 2013 08:57:19 +0000 (08:57 +0000)
committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Sat, 11 May 2013 20:53:54 +0000 (13:53 -0700)
diff --git a/net/netfilter/ipset/ip_set_list_set.c b/net/netfilter/ipset/ip_set_list_set.c

index 8371c2bac2e4240eb5c4b3f6abd0faa48f6212ce..09c744aa89829cb7f99878974ef2471364135f27 100644 (file)
--- a/net/netfilter/ipset/ip_set_list_set.c
+++ b/net/netfilter/ipset/ip_set_list_set.c
@@ -174,9 +174,13 @@ list_set_add(struct list_set *map, u32 i, ip_set_id_t id,
  {
         const struct set_elem *e = list_set_elem(map, i);
  
-       if (i == map->size - 1 && e->id != IPSET_INVALID_ID)
-               /* Last element replaced: e.g. add new,before,last */
-               ip_set_put_byindex(e->id);
+       if (e->id != IPSET_INVALID_ID) {
+               const struct set_elem *x = list_set_elem(map, map->size - 1);
+
+               /* Last element replaced or pushed off */
+               if (x->id != IPSET_INVALID_ID)
+                       ip_set_put_byindex(x->id);
+       }
         if (with_timeout(map->timeout))
                 list_elem_tadd(map, i, id, ip_set_timeout_set(timeout));
         else
author	Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
	Tue, 9 Apr 2013 08:57:19 +0000 (08:57 +0000)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sat, 11 May 2013 20:53:54 +0000 (13:53 -0700)