Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-next (9dfa859d) · Commits · EulixOS / Software / Kernel

Documentation/networking/nf_conntrack-sysctl.rst

+7 −0

Original line number	Diff line number	Diff line
		@@ -184,6 +184,13 @@ nf_conntrack_gre_timeout_stream - INTEGER (seconds)
		This extended timeout will be used in case there is an GRE stream
		detected.

		nf_hooks_lwtunnel - BOOLEAN
		- 0 - disabled (default)
		- not 0 - enabled

		If this option is enabled, the lightweight tunnel netfilter hooks are
		enabled. This option cannot be disabled once it is enabled.

		nf_flowtable_tcp_timeout - INTEGER (seconds)
		default 30

+3 −0

Original line number	Diff line number	Diff line
		@@ -51,6 +51,9 @@ struct lwtunnel_encap_ops {
		};

		#ifdef CONFIG_LWTUNNEL

		DECLARE_STATIC_KEY_FALSE(nf_hooks_lwtunnel_enabled);

		void lwtstate_free(struct lwtunnel_state *lws);

		static inline struct lwtunnel_state *

+11 −21

Original line number	Diff line number	Diff line
		@@ -72,14 +72,20 @@ struct nf_ct_event {
		int report;
		};

		struct nf_exp_event {
		struct nf_conntrack_expect *exp;
		u32 portid;
		int report;
		};

		struct nf_ct_event_notifier {
		int (fcn)(unsigned int events, struct nf_ct_event item);
		int (ct_event)(unsigned int events, const struct nf_ct_event item);
		int (exp_event)(unsigned int events, const struct nf_exp_event item);
		};

		int nf_conntrack_register_notifier(struct net *net,
		struct nf_ct_event_notifier *nb);
		void nf_conntrack_unregister_notifier(struct net *net,
		struct nf_ct_event_notifier *nb);
		void nf_conntrack_register_notifier(struct net *net,
		const struct nf_ct_event_notifier *nb);
		void nf_conntrack_unregister_notifier(struct net *net);

		void nf_ct_deliver_cached_events(struct nf_conn *ct);
		int nf_conntrack_eventmask_report(unsigned int eventmask, struct nf_conn *ct,
		@@ -151,22 +157,6 @@ nf_conntrack_event(enum ip_conntrack_events event, struct nf_conn *ct)
		}

		#ifdef CONFIG_NF_CONNTRACK_EVENTS

		struct nf_exp_event {
		struct nf_conntrack_expect *exp;
		u32 portid;
		int report;
		};

		struct nf_exp_event_notifier {
		int (fcn)(unsigned int events, struct nf_exp_event item);
		};

		int nf_ct_expect_register_notifier(struct net *net,
		struct nf_exp_event_notifier *nb);
		void nf_ct_expect_unregister_notifier(struct net *net,
		struct nf_exp_event_notifier *nb);

		void nf_ct_expect_event_report(enum ip_conntrack_expect_events event,
		struct nf_conntrack_expect *exp,
		u32 portid, int report);

0 → 100644

+7 −0

Original line number	Diff line number	Diff line
		#include <linux/sysctl.h>
		#include <linux/types.h>

		#ifdef CONFIG_SYSCTL
		int nf_hooks_lwtunnel_sysctl_handler(struct ctl_table *table, int write,
		void buffer, size_t lenp, loff_t *ppos);
		#endif

+0 −1

Original line number	Diff line number	Diff line
		@@ -113,7 +113,6 @@ struct netns_ct {
		struct ct_pcpu __percpu *pcpu_lists;
		struct ip_conntrack_stat __percpu *stat;
		struct nf_ct_event_notifier __rcu *nf_conntrack_event_cb;
		struct nf_exp_event_notifier __rcu *nf_expect_event_cb;
		struct nf_ip_net nf_ct_proto;
		#if defined(CONFIG_NF_CONNTRACK_LABELS)
		unsigned int labels_used;