]> git.karo-electronics.de Git - linux-beck.git/commit
projects / linux-beck.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: acd43fe) | patch
netfilter: nf_tables: fix memory leak if expr init fails
authorLiping Zhang <liping.zhang@spreadtrum.com>
Mon, 20 Jun 2016 13:11:45 +0000 (21:11 +0800)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 23 Jun 2016 12:15:24 +0000 (14:15 +0200)
commit6cafaf4764a32597c2195aa5411b87728e1fde8a
tree4d072f4a097bc572a3eb971923a3d73a81f695fbtree | snapshot
parentacd43fe85b2d1dbad55ce211b8817e6d6687246fcommit | diff
netfilter: nf_tables: fix memory leak if expr init fails

If expr init fails then we need to free it.

So when the user add a nft rule as follows:

  # nft add rule filter input tcp dport 22 flow table ssh \
    { ip saddr limit rate 0/second }

memory leak will happen.

Signed-off-by: Liping Zhang <liping.zhang@spreadtrum.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_tables_api.c diff | blob | history
Beck SC1x5 Kernel