projects / platform / kernel / linux-rpi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: aebfa52) | patch
netfilter: nf_tables: cache device name in flowtable object
authorPablo Neira Ayuso <pablo@netfilter.org>
Wed, 21 Mar 2018 12:55:42 +0000 (13:55 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 22 Mar 2018 11:57:07 +0000 (12:57 +0100)
commitd92191aa84e5f187d543867c3d54b38f294833fa
tree1f3f76eb4fd2c70a38b0c2f17fc7ef64ee574578tree | snapshot
parentaebfa52a925d701114afd6af0def35bab16d4f47commit | diff
netfilter: nf_tables: cache device name in flowtable object

Devices going away have to grab the nfnl_lock from the netdev event path
to avoid races with control plane updates.

However, netlink dumps in netfilter do not hold nfnl_lock mutex. Cache
the device name into the objects to avoid an use-after-free situation
for a device that is going away.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/net/netfilter/nf_tables.h diff | blob | history
net/netfilter/nf_tables_api.c diff | blob | history
Domain: System / Kernel;