netfilter: conntrack: Fix gre tunneling over ipv6

[ Upstream commit 8b2030b4305951f44afef80225f1475618e25a73 ] This fix permits gre connections to be tracked within ip6tables rules Signed-off-by: Ludovic Senecaux <linuxludo@free.fr> Acked-by: Florian Westphal <fw@strlen.de> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> Signed-off-by: Sasha Levin <sashal@kernel.org>
author: Ludovic Senecaux <linuxludo@free.fr> 2021-03-04 04:10:50 -0500
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2021-04-10 13:34:31 +0200
commit: 5a8c30e8acadb2f8a9fa4b1ad8b3b82d1dee4ff1 (patch)
tree: 1580bf7e0bd363c68daec5990117cdd61a1d376b /net/netfilter
parent: e84a795b8a0b8757243059b350b612c3e5158c6f (diff)
1 files changed, 0 insertions, 3 deletions
diff --git a/net/netfilter/nf_conntrack_proto_gre.c b/net/netfilter/nf_conntrack_proto_gre.c
index 5b05487a60d2..db11e403d818 100644
--- a/net/netfilter/nf_conntrack_proto_gre.c
+++ b/net/netfilter/nf_conntrack_proto_gre.c
@@ -218,9 +218,6 @@ int nf_conntrack_gre_packet(struct nf_conn *ct,
 			    enum ip_conntrack_info ctinfo,
 			    const struct nf_hook_state *state)
 {
-	if (state->pf != NFPROTO_IPV4)
-		return -NF_ACCEPT;
-
 	if (!nf_ct_is_confirmed(ct)) {
 		unsigned int *timeouts = nf_ct_timeout_lookup(ct);
author	Ludovic Senecaux <linuxludo@free.fr>	2021-03-04 04:10:50 -0500
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2021-04-10 13:34:31 +0200
commit	5a8c30e8acadb2f8a9fa4b1ad8b3b82d1dee4ff1 (patch)
tree	1580bf7e0bd363c68daec5990117cdd61a1d376b /net/netfilter
parent	e84a795b8a0b8757243059b350b612c3e5158c6f (diff)