]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 339673e) | patch
netfilter: nf_tables: fix register ordering
authorFlorian Westphal <fw@strlen.de>
Thu, 2 Aug 2018 19:44:40 +0000 (21:44 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 16 Aug 2018 17:37:02 +0000 (19:37 +0200)
commit60ed6ed13cb927c455bb9b8b9ae01f0a8af0d096
treeb2ded0dc8be12f0048188bbf2b0a80f01fbb353atree | snapshot
parent339673edb4b3f3f3fc929f0dd273cdbbb6a27946commit | diff
netfilter: nf_tables: fix register ordering

We must register nfnetlink ops last, as that exposes nf_tables to
userspace.  Without this, we could theoretically get nfnetlink request
before net->nft state has been initialized.

Fixes: 0479c0b6682af ("netfilter: nf_tables: complete net namespace support")
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/net/netfilter/nf_tables.h diff | blob | history
net/netfilter/nf_tables_api.c diff | blob | history
net/netfilter/nft_chain_filter.c diff | blob | history
Linux Kernel Source Tree.