projects / openwrt / staging / blogic.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fc6ddbe) | patch
netfilter: nf_conncount: Fix garbage collection with zones
authorYi-Hung Wei <yihung.wei@gmail.com>
Tue, 12 Jun 2018 17:51:34 +0000 (10:51 -0700)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 12 Jun 2018 18:07:07 +0000 (20:07 +0200)
commit21ba8847f857028dc83a0f341e16ecc616e34740
tree2df27a0099a40362eebd1a1a6be182d52134a550tree | snapshot
parentfc6ddbecce440df74fb4491c17c372b52cf5be83commit | diff
netfilter: nf_conncount: Fix garbage collection with zones

Currently, we use check_hlist() for garbage colleciton. However, we
use the ‘zone’ from the counted entry to query the existence of
existing entries in the hlist. This could be wrong when they are in
different zones, and this patch fixes this issue.

Fixes: e59ea3df3fc2 ("netfilter: xt_connlimit: honor conntrack zone if available")
Signed-off-by: Yi-Hung Wei <yihung.wei@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/net/netfilter/nf_conntrack_count.h diff | blob | history
net/netfilter/nf_conncount.c diff | blob | history
net/netfilter/nft_connlimit.c diff | blob | history
John Crispins staging tree