Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
netfilter: nftables: fix possible UAF over chains from packet path in…
… netns Although hooks are released via call_rcu(), chain and rule objects are immediately released while packets are still walking over these bits. This patch adds the .pre_exit callback which is invoked before synchronize_rcu() in the netns framework to stay safe. Remove a comment which is not valid anymore since the core does not use synchronize_net() anymore since 8c873e2 ("netfilter: core: free hooks with call_rcu"). Suggested-by: Florian Westphal <[email protected]> Fixes: df05ef8 ("netfilter: nf_tables: release objects on netns destruction") Signed-off-by: Pablo Neira Ayuso <[email protected]>
- Loading branch information