summaryrefslogtreecommitdiff
path: root/include/net/netns
diff options
context:
space:
mode:
authorPablo Neira Ayuso <pablo@netfilter.org>2014-07-01 13:49:18 +0400
committerPablo Neira Ayuso <pablo@netfilter.org>2014-07-14 13:20:45 +0400
commite688a7f8c6cb7a18aae7e55ccdd175f0ad9e69c0 (patch)
tree192a76d6a42b42d039b9def5b10ede0d02c3cbf4 /include/net/netns
parent63283dd21ed2bf25a71909a820ed3e8fe412e15d (diff)
downloadlinux-e688a7f8c6cb7a18aae7e55ccdd175f0ad9e69c0.tar.xz
netfilter: nf_tables: safe RCU iteration on list when dumping
The dump operation through netlink is not protected by the nfnl_lock. Thus, a reader process can be dumping any of the existing object lists while another process can be updating the list content. This patch resolves this situation by protecting all the object lists with RCU in the netlink dump path which is the reader side. The updater path is already protected via nfnl_lock, so use list manipulation RCU-safe operations. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include/net/netns')
0 files changed, 0 insertions, 0 deletions