]> git.ipfire.org Git - thirdparty/iptables.git/commit
projects / thirdparty / iptables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f4b80ce) | patch
iptables-compat: do not allow to delete populated user define chains
authorPablo Neira Ayuso <pablo@netfilter.org>
Tue, 10 Oct 2017 22:19:27 +0000 (00:19 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 10 Oct 2017 22:19:27 +0000 (00:19 +0200)
commitde3c68b626cce37b3b2a41e06af9f7242b25f2a8
treef1f70551fb86bd79f5e73524c0dad98acf3700c9tree
parentf4b80ce7bae8f9d10c401fdd743b73795ff1d679commit | diff
iptables-compat: do not allow to delete populated user define chains

If user chain contains rules, flush needs to happen first to retain
iptables semantics. Use NLM_F_NONREC to request non-recursive chain
deletion.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
iptables/nft.c diff | blob | blame | history
Mirror of git://git.netfilter.org/iptables