]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 804dc00) | patch
netfilter: ctnetlink: remove expired entries first
authorFlorian Westphal <fw@strlen.de>
Thu, 9 Dec 2021 16:39:26 +0000 (17:39 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 16 Dec 2021 13:10:52 +0000 (14:10 +0100)
commit296b8e9f6f5b85102761a2a6b4bf2bd89820483c
tree626ed65ee87def3d18f3cc6491eff9e600cea62etree | snapshot
parent804dc006a12cbd403b0e3c3ad7c4b833b5095513commit | diff
netfilter: ctnetlink: remove expired entries first

When dumping conntrack table to userspace via ctnetlink, check if the ct has
already expired before doing any of the 'skip' checks.

This expires dead entries faster.
/proc handler also removes outdated entries first.

Reported-by: Vitaly Zuevsky <vzuevsky@ns1.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_conntrack_netlink.c diff | blob | history
Linux Kernel Source Tree.