Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 57de2a0cd9d7e4cfc6479ecbebfcd36dbc61d5ed
commit57de2a0cd9d7e4cfc6479ecbebfcd36dbc61d5ed[log] [tgz]
authorPatrick McHardy <kaber@trash.net>Thu Jan 09 18:42:31 2014 +0000
committerPablo Neira Ayuso <pablo@netfilter.org>Thu Jan 09 20:17:13 2014 +0100
treecb7657b0a5752388c10f320db7e2d7db9767cb69
parentb38895c5773b00977ca6beff8ebbd2e3f55f1f84 [diff]
netfilter: nf_tables: split chain policy validation from actually setting it

Currently nf_tables_newchain() atomicity is broken because of having
validation of some netlink attributes performed after changing attributes
of the chain. The chain policy is (currently) fine, but split it up as
preparation for the following fixes and to avoid future mistakes.

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
1 file changed
tree: cb7657b0a5752388c10f320db7e2d7db9767cb69
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS