summaryrefslogtreecommitdiff
path: root/net/rose
diff options
context:
space:
mode:
authorPablo Neira Ayuso <pablo@netfilter.org>2021-09-25 01:27:38 +0300
committerPablo Neira Ayuso <pablo@netfilter.org>2021-09-28 14:04:56 +0300
commit2c964c558641a3bddaee5719c9e6d8805f777812 (patch)
tree817fd061d9ed87935049b38413ec33fdbe53f1ca /net/rose
parente189ae161dd784aa5d454b0832f818cacc0e131b (diff)
downloadlinux-2c964c558641a3bddaee5719c9e6d8805f777812.tar.xz
netfilter: nf_tables: reverse order in rule replacement expansion
Deactivate old rule first, then append the new rule, so rule replacement notification via netlink first reports the deletion of the old rule with handle X in first place, then it adds the new rule (reusing the handle X of the replaced old rule). Note that the abort path releases the transaction that has been created by nft_delrule() on error. Fixes: ca08987885a1 ("netfilter: nf_tables: deactivate expressions in rule replecement routine") Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'net/rose')
0 files changed, 0 insertions, 0 deletions