38e029f14a
An updater may interfer with the dumping of any of the object lists. Fix this by using a per-net generation counter and use the nl_dump_check_consistent() interface so the NLM_F_DUMP_INTR flag is set to notify userspace that it has to restart the dump since an updater has interfered. This patch also replaces the existing consistency checking code in the rule dumping path since it is broken. Basically, the value that the dump callback returns is not propagated to userspace via netlink_dump_start(). Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
20 lines
372 B
C
20 lines
372 B
C
#ifndef _NETNS_NFTABLES_H_
|
|
#define _NETNS_NFTABLES_H_
|
|
|
|
#include <linux/list.h>
|
|
|
|
struct nft_af_info;
|
|
|
|
struct netns_nftables {
|
|
struct list_head af_info;
|
|
struct list_head commit_list;
|
|
struct nft_af_info *ipv4;
|
|
struct nft_af_info *ipv6;
|
|
struct nft_af_info *inet;
|
|
struct nft_af_info *arp;
|
|
struct nft_af_info *bridge;
|
|
unsigned int base_seq;
|
|
u8 gencursor;
|
|
};
|
|
|
|
#endif
|