projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 78222ba) | patch
netfilter: remove nf_ct_unconfirmed_destroy helper
authorFlorian Westphal <fw@strlen.de>
Mon, 11 Apr 2022 11:01:20 +0000 (13:01 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Fri, 13 May 2022 16:52:16 +0000 (18:52 +0200)
commit17438b42ce14cb60ceda9ae62ad5dd022d55a216
tree6f4c522fe50b9518733c972f9501d8cc995072f5tree | snapshot
parent78222bacfca97cb18505df1ba5f3591864498a7ecommit | diff
netfilter: remove nf_ct_unconfirmed_destroy helper

This helper tags connections not yet in the conntrack table as
dying.  These nf_conn entries will be dropped instead when the
core attempts to insert them from the input or postrouting
'confirm' hook.

After the previous change, the entries get unlinked from the
list earlier, so that by the time the actual exit hook runs,
new connections no longer have a timeout policy assigned.

Its enough to walk the hashtable instead.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/net/netfilter/nf_conntrack.h diff | blob | history
net/netfilter/nf_conntrack_core.c diff | blob | history
net/netfilter/nfnetlink_cttimeout.c diff | blob | history
ep93xx device tree rework repo: git://git.maquefel.me/linux.git