]> git.ipfire.org Git - thirdparty/kernel/linux.git/commit
projects / thirdparty / kernel / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b4597d5) | patch
netfilter: ebtables: move to two-stage removal scheme
authorFlorian Westphal <fw@strlen.de>
Wed, 6 May 2026 10:07:18 +0000 (12:07 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 7 May 2026 23:30:17 +0000 (01:30 +0200)
commitb7f0544d86d439cb946515d2ef6a0a75e8626710
treeae5ea121073475fed83a2e7d8b56497f5401effftree | snapshot
parentb4597d5fd7d2f8cebfffd40dffb5e003cc78964ccommit | diff
netfilter: ebtables: move to two-stage removal scheme

Like previous patches for x_tables, follow same pattern in ebtables.
We can't reuse xt helpers: ebt_table struct layout is incompatible.

table->ops assignment is now done while still holding the ebt mutex
to make sure we never expose partially-filled table struct.

Fixes: 87663c39f898 ("netfilter: ebtables: do not hook tables by default")
Reviewed-by: Tristan Madani <tristan@talencesecurity.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/bridge/netfilter/ebtable_broute.c diff | blob | blame | history
net/bridge/netfilter/ebtable_filter.c diff | blob | blame | history
net/bridge/netfilter/ebtable_nat.c diff | blob | blame | history
net/bridge/netfilter/ebtables.c diff | blob | blame | history
A mirror of Linus' kernel repository