UPSTREAM: netfilter: x_tables: fix pointer leaks to userspace

Several netfilter matches and targets put kernel pointers into
info objects, but don't set usersize in descriptors.
This leads to kernel pointer leaks if a match/target is set
and then read back to userspace.

Properly set usersize for these matches/targets.

Found with manual code inspection.

Bug: 187527909
Fixes: ec2318904965 ("xtables: extend matches and targets with .usersize")
Signed-off-by: Dmitry Vyukov <>
Signed-off-by: Pablo Neira Ayuso <>
Change-Id: If4d4beb7429c38d9b359cb2a929c71aef84f6cd0
(cherry picked from commit 1e98ffea5a8935ec040ab72299e349cb44b8defd)
Signed-off-by: Hridya Valsaraju <>
5 files changed