]> git.ipfire.org Git - thirdparty/kernel/linux.git/commit
projects / thirdparty / kernel / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 92c603f) | patch
netfilter: x_tables: close dangling table module init race
authorFlorian Westphal <fw@strlen.de>
Wed, 6 May 2026 10:07:20 +0000 (12:07 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 7 May 2026 23:30:17 +0000 (01:30 +0200)
commit16bc4b6686b2c112c10e67d6b493adc3607256d3
tree3a9019d62c11ee9d29236fea50e7e0684b5eac64tree | snapshot
parent92c603fa07bc0d6a17345de3ad7954730b8de44bcommit | diff
netfilter: x_tables: close dangling table module init race

Similar to the previous ebtables patch:
template add exposes the table to userspace, we must do this last to
rnsure the pernet ops are set up (contain the destructors).

Fixes: fdacd57c79b7 ("netfilter: x_tables: never register tables by default")
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/ipv4/netfilter/arptable_filter.c diff | blob | blame | history
net/ipv4/netfilter/iptable_filter.c diff | blob | blame | history
net/ipv4/netfilter/iptable_mangle.c diff | blob | blame | history
net/ipv4/netfilter/iptable_raw.c diff | blob | blame | history
net/ipv4/netfilter/iptable_security.c diff | blob | blame | history
net/ipv6/netfilter/ip6table_filter.c diff | blob | blame | history
net/ipv6/netfilter/ip6table_mangle.c diff | blob | blame | history
net/ipv6/netfilter/ip6table_raw.c diff | blob | blame | history
net/ipv6/netfilter/ip6table_security.c diff | blob | blame | history
A mirror of Linus' kernel repository