[FS#944] firewall3 isn't holding iptables lock
LEDE Bugs
lede-bugs at lists.infradead.org
Tue Aug 1 03:46:51 PDT 2017
A new Flyspray task has been opened. Details are below.
User who did this - Charlemagne Lasse (charlemagnelasse)
Attached to Project - LEDE Project
Summary - firewall3 isn't holding iptables lock
Task Type - Bug Report
Category - Packages
Status - Unconfirmed
Assigned To -
Operating System - All
Severity - Low
Priority - Very Low
Reported Version - Trunk
Due in Version - Undecided
Due Date - Undecided
Details - I was first thinking that my missing iptables rules are related to the bug FS#943. But it looks like firewall3 is not holding the iptables lock via the option "-w". This is unsafe because multiple iptables process may try to change a table at the same time and thus overwrite the final results of another iptables process.
The -w functionality for iptables-restore can be found in https://git.netfilter.org/iptables/commit/?id=999eaa241212d3952ddff39a99d0d55a74e3639e
More information can be found at the following URL:
https://bugs.lede-project.org/index.php?do=details&task_id=944
More information about the lede-bugs
mailing list