projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ebb966d) | patch
netfilter: ctnetlink: remove expired entries first
authorFlorian Westphal <fw@strlen.de>
Thu, 9 Dec 2021 16:39:26 +0000 (17:39 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 16 Dec 2021 13:10:52 +0000 (14:10 +0100)
commit76f12e632a15a20c8de3532d64a0708cf0e32f11
tree626ed65ee87def3d18f3cc6491eff9e600cea62etree | snapshot
parentebb966d3bdfed581ecccbb4a7432341baf7619b4commit | diff
netfilter: ctnetlink: remove expired entries first

When dumping conntrack table to userspace via ctnetlink, check if the ct has
already expired before doing any of the 'skip' checks.

This expires dead entries faster.
/proc handler also removes outdated entries first.

Reported-by: Vitaly Zuevsky <vzuevsky@ns1.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_conntrack_netlink.c diff | blob | history
ep93xx device tree rework repo: git://git.maquefel.me/linux.git