netfilter: nft_synproxy: unregister hooks on init error path

author Pablo Neira Ayuso <pablo@netfilter.org>

Thu, 10 Feb 2022 09:06:42 +0000 (10:06 +0100)

committer Pablo Neira Ayuso <pablo@netfilter.org>

Thu, 10 Feb 2022 15:33:57 +0000 (16:33 +0100)
author Pablo Neira Ayuso <pablo@netfilter.org>
Thu, 10 Feb 2022 09:06:42 +0000 (10:06 +0100)
committer Pablo Neira Ayuso <pablo@netfilter.org>
Thu, 10 Feb 2022 15:33:57 +0000 (16:33 +0100)
diff --git a/net/netfilter/nft_synproxy.c b/net/netfilter/nft_synproxy.c

index a0109fa..1133e06 100644 (file)
--- a/net/netfilter/nft_synproxy.c
+++ b/net/netfilter/nft_synproxy.c
@@ -191,8 +191,10 @@ static int nft_synproxy_do_init(const struct nft_ctx *ctx,
                 if (err)
                         goto nf_ct_failure;
                 err = nf_synproxy_ipv6_init(snet, ctx->net);
-               if (err)
+               if (err) {
+                       nf_synproxy_ipv4_fini(snet, ctx->net);
                         goto nf_ct_failure;
+               }
                 break;
         }
author	Pablo Neira Ayuso <pablo@netfilter.org>
	Thu, 10 Feb 2022 09:06:42 +0000 (10:06 +0100)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Thu, 10 Feb 2022 15:33:57 +0000 (16:33 +0100)