mirrors/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-08-22 00:40:03 +00:00
Code Issues Releases Wiki Activity
1058060 commits 104 branches 5070 tags 5.5 GiB
Commit graph

4 commits

Author SHA1 Message Date
Pablo Neira Ayuso
32953df7a6 netfilter: nft_last: avoid possible false sharing 
Use the idiom described in:

https://github.com/google/ktsan/wiki/READ_ONCE-and-WRITE_ONCE#it-may-improve-performance

Moreover, prevent a compiler optimization.

Fixes: 836382dc24 ("netfilter: nf_tables: add last expression")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
 2021-07-23 14:18:02 +02:00
Pablo Neira Ayuso
d1b5b80da7 netfilter: nft_last: incorrect arithmetics when restoring last used 
Subtract the jiffies that have passed by to current jiffies to fix last
used restoration.

Fixes: 836382dc24 ("netfilter: nf_tables: add last expression")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
 2021-07-06 14:15:13 +02:00
Pablo Neira Ayuso
6ac4bac4ce netfilter: nft_last: honor NFTA_LAST_SET on restoration 
NFTA_LAST_SET tells us if this expression has ever seen a packet, do not
ignore this attribute when restoring the ruleset.

Fixes: 836382dc24 ("netfilter: nf_tables: add last expression")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
 2021-07-06 14:15:13 +02:00
Pablo Neira Ayuso
836382dc24 netfilter: nf_tables: add last expression 
Add a new optional expression that tells you when last matching on a
given rule / set element element has happened.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
 2021-06-17 03:23:00 +02:00