rbnode in insert_tree() is rcu protected pointer.
So, in order to handle this pointer, _rcu function should be used.
rb_link_node_rcu() is a rcu version of rb_link_node().
Fixes: 34848d5c896e ("netfilter: nf_conncount: Split insert and traversal")
Signed-off-by: Taehee Yoo
---
Urgently need money? We can help you!
Are you by the current situation in trouble or threatens you in trouble?
In this way, we give you the ability to take a new development.
As a rich person I feel obliged to assist people who are struggling to give
them a chance. Everyone deserved a second
On Fri, Dec 07, 2018 at 02:05:15PM +0100, Florian Westphal wrote:
> Pablo Neira Ayuso wrote:
> > Add ip-saddr, ip-daddr, ether-saddr, ether-daddr for arp, eg.
> >
> > # nft add table arp x
> > # nft add chain arp x y { type filter hook input priority 0\; }
> > # nft add rule arp x y arp
Pablo Neira Ayuso wrote:
> Add ip-saddr, ip-daddr, ether-saddr, ether-daddr for arp, eg.
>
> # nft add table arp x
> # nft add chain arp x y { type filter hook input priority 0\; }
> # nft add rule arp x y arp ip-saddr 192.168.2.1 counter
'arp {ip,ether} {s,d}addr' would create ambiguities?
Add ip-saddr, ip-daddr, ether-saddr, ether-daddr for arp, eg.
# nft add table arp x
# nft add chain arp x y { type filter hook input priority 0\; }
# nft add rule arp x y arp ip-saddr 192.168.2.1 counter
Testing this:
# ip neigh flush dev eth0
# ping 8.8.8.8
# nft list ruleset
table arp
On Wed, Dec 05, 2018 at 02:12:19PM +0100, Florian Westphal wrote:
> When adjusting sack block sequence numbers, skb_make_writable() gets
> called to make sure tcp options are all in the linear area, and buffer
> is not shared.
>
> This can cause tcp header pointer to get reallocated, so we must
>
On Thu, Dec 06, 2018 at 05:17:50PM +0100, Phil Sutter wrote:
> This series implements a rule list in chains to allow for per chain rule
> caches in iptables-nft as well as nftables.
>
> A second patch then adds utility functions for chain and rule lookups,
> preparing for further optimizing these
