Hi, The following patchset contains Netfilter fixes for net: 1) Don't flag SCTP heartbeat as invalid for re-used connections, from Florian Westphal. 2) Bogus overlap report due to rbtree tree rotations, from Stefano Brivio. 3) Detect partial overlap with start end point match, also from Stefano. 4) Skip netlink dump of NFTA_SET_USERDATA is unset. 5) Incorrect nft_list_attributes enumeration definition. 6) Missing zeroing before memcpy to destination register, also from Florian. Please, pull these changes from: git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf.git Thank you. ---------------------------------------------------------------- The following changes since commit cf96d977381d4a23957bade2ddf1c420b74a26b6: net: gemini: Fix missing free_netdev() in error path of gemini_ethernet_port_probe() (2020-08-19 16:37:18 -0700) are available in the Git repository at: git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf.git HEAD for you to fetch changes up to 1e105e6afa6c3d32bfb52c00ffa393894a525c27: netfilter: nf_tables: fix destination register zeroing (2020-08-21 19:00:33 +0200) ---------------------------------------------------------------- Florian Westphal (2): netfilter: conntrack: allow sctp hearbeat after connection re-use netfilter: nf_tables: fix destination register zeroing Pablo Neira Ayuso (2): netfilter: nf_tables: add NFTA_SET_USERDATA if not null netfilter: nf_tables: incorrect enum nft_list_attributes definition Stefano Brivio (2): netfilter: nft_set_rbtree: Handle outcomes of tree rotations in overlap detection netfilter: nft_set_rbtree: Detect partial overlap with start endpoint match include/linux/netfilter/nf_conntrack_sctp.h | 2 + include/net/netfilter/nf_tables.h | 2 + include/uapi/linux/netfilter/nf_tables.h | 2 +- net/netfilter/nf_conntrack_proto_sctp.c | 39 ++++++++++++++++++-- net/netfilter/nf_tables_api.c | 3 +- net/netfilter/nft_payload.c | 4 +- net/netfilter/nft_set_rbtree.c | 57 ++++++++++++++++++++++++----- 7 files changed, 92 insertions(+), 17 deletions(-)