A batch of patches to fix concurrent updates via iptables-restore that result in ERESTART errors in iptables. Pablo Neira Ayuso (5): nft: keep original cache in case of ERESTART nft: don't skip table addition from ERESTART nft: don't care about previous state in ERESTART nft: do not retry on EINTR nft: reset netlink sender buffer size of socket restart Phil Sutter (1): xtables: Fix for explicit rule flushes iptables/nft.c | 79 ++++++++++++++++++++++++++++------------------------------ iptables/nft.h | 3 ++- 2 files changed, 40 insertions(+), 42 deletions(-) -- 2.11.0
