OSDN Git Service

(root) / tomoyo / tomoyo-test1.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1a441a9)
net/sched: act_ct: set ctinfo in meta action depending on ct state
authorVlad Buslov <vladbu@nvidia.com>
Wed, 1 Feb 2023 16:30:58 +0000 (17:30 +0100)
committerDavid S. Miller <davem@davemloft.net>
Fri, 3 Feb 2023 09:31:24 +0000 (09:31 +0000)
Currently tcf_ct_flow_table_fill_actions() function assumes that only
established connections can be offloaded and always sets ctinfo to either
IP_CT_ESTABLISHED or IP_CT_ESTABLISHED_REPLY strictly based on direction
without checking actual connection state. To enable UDP NEW connection
offload set the ctinfo, metadata cookie and NF_FLOW_HW_ESTABLISHED
flow_offload flags bit based on ct->status value.

Signed-off-by: Vlad Buslov <vladbu@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
net/sched/act_ct.c patch | blob | history

diff --git a/net/sched/act_ct.c b/net/sched/act_ct.c
index b9d3e33..2cee3f9 100644 (file)
--- a/net/sched/act_ct.c
+++ b/net/sched/act_ct.c
@@ -249,8 +249,10 @@ static int tcf_ct_flow_table_fill_actions(struct net *net,
        switch (tdir) {
        case FLOW_OFFLOAD_DIR_ORIGINAL:
                dir = IP_CT_DIR_ORIGINAL;
-               ctinfo = IP_CT_ESTABLISHED;
-               set_bit(NF_FLOW_HW_ESTABLISHED, &flow->flags);
+               ctinfo = test_bit(IPS_SEEN_REPLY_BIT, &ct->status) ?
+                       IP_CT_ESTABLISHED : IP_CT_NEW;
+               if (ctinfo == IP_CT_ESTABLISHED)
+                       set_bit(NF_FLOW_HW_ESTABLISHED, &flow->flags);
                break;
        case FLOW_OFFLOAD_DIR_REPLY:
                dir = IP_CT_DIR_REPLY;
This is a test repository.
About OSDN
Find Software
Develop Software
Help