ebtables-restore: Deny --init-table

Allowing this segfaults the program. The deny is in line with legacy ebtables, so no point in implementing support for that. Signed-off-by: Phil Sutter <phil@nwl.cc>
author: Phil Sutter <phil@nwl.cc> 2021-06-02 10:13:26 +0200
committer: Phil Sutter <phil@nwl.cc> 2022-06-11 11:47:03 +0200
commit: 276346f6659b700306070545f51c1a6060972f16 (patch)
tree: f6c98bcd57304e52fa57cd6b3b6515bf98739542 /iptables/xtables-eb.c
parent: 09ffa608476b8052b33b7fa0b2fe59f521aaeec1 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/iptables/xtables-eb.c b/iptables/xtables-eb.c
index 3d15063e..b986fd9e 100644
--- a/iptables/xtables-eb.c
+++ b/iptables/xtables-eb.c
@@ -1077,6 +1077,9 @@ print_zero:
 			flags |= LIST_MAC2;
 			break;
 		case 11: /* init-table */
+			if (restore)
+				xtables_error(PARAMETER_PROBLEM,
+					      "--init-table is not supported in daemon mode");
 			nft_cmd_table_flush(h, *table, false);
 			return 1;
 		case 13 :
author	Phil Sutter <phil@nwl.cc>	2021-06-02 10:13:26 +0200
committer	Phil Sutter <phil@nwl.cc>	2022-06-11 11:47:03 +0200
commit	276346f6659b700306070545f51c1a6060972f16 (patch)
tree	f6c98bcd57304e52fa57cd6b3b6515bf98739542 /iptables/xtables-eb.c
parent	09ffa608476b8052b33b7fa0b2fe59f521aaeec1 (diff)