netfilter: nft_flow_offload: wait for garbage collector to run after cleanup - linux

diff options

author	Pablo Neira Ayuso <pablo@netfilter.org>	2018-02-01 18:49:00 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2018-02-02 18:26:42 +0100
commit	c7f0030b5b67866c588845abde7bf011de25b98a (patch)
tree	88aa5bcfc07581b764d8db201d356a541c92ead3 /Makefile
parent	netfilter: xt_cgroup: initialize info->priv in cgroup_mt_check_v1() (diff)
download	linux-c7f0030b5b67866c588845abde7bf011de25b98a.tar.xz linux-c7f0030b5b67866c588845abde7bf011de25b98a.zip

netfilter: nft_flow_offload: wait for garbage collector to run after cleanup

If netdevice goes down, then flowtable entries are scheduled to be removed. Wait for garbage collector to have a chance to run so it can delete them from the hashtable. The flush call might sleep, so hold the nfnl mutex from nft_flow_table_iterate() instead of rcu read side lock. The use of the nfnl mutex is also implicitly fixing races between updates via nfnetlink and netdevice event. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

Diffstat (limited to '')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: