TWxSoftware/twx-linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
38a27ee2ea03a931345392efaa72ee780db296ea
twx-linux/net
T
History
Henry Yen 73aa8292ca netfilter: nft_flow_offload: fix checking method of conntrack helper 
[ Upstream commit 2314e87974 ]

This patch uses nfct_help() to detect whether an established connection
needs conntrack helper instead of using test_bit(IPS_HELPER_BIT,
&ct->status).

The reason is that IPS_HELPER_BIT is only set when using explicit CT
target.

However, in the case that a device enables conntrack helper via command
"echo 1 > /proc/sys/net/netfilter/nf_conntrack_helper", the status of
IPS_HELPER_BIT will not present any change, and consequently it loses
the checking ability in the context.

Signed-off-by: Henry Yen <henry.yen@mediatek.com>
Reviewed-by: Ryder Lee <ryder.lee@mediatek.com>
Tested-by: John Crispin <john@phrozen.org>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2019-02-27 10:08:55 +01:00
..
6lowpan
9p
9p/net: put a lower bound on msize
2019-01-13 09:51:08 +01:00
802
8021q
appletalk
atm
ax25
ax25: fix possible use-after-free
2019-02-23 09:07:27 +01:00
batman-adv
batman-adv: Force mac header to start of data on xmit
2019-02-15 08:10:13 +01:00
bluetooth
Bluetooth: Fix unnecessary error message for HCI request completion
2019-01-26 09:32:44 +01:00
bpf
bpfilter
bridge
net: Fix usage of pskb_trim_rcsum
2019-01-31 08:14:31 +01:00
caif
can
can: bcm: check timer values before ktime conversion
2019-01-31 08:14:39 +01:00
ceph
libceph: handle an empty authorize reply
2019-02-27 10:08:50 +01:00
core
bpf: correctly set initial window on active Fast Open sender
2019-02-27 10:08:54 +01:00
dcb
dccp
dccp: fool proof ccid_hc_[rt]x_parse_options()
2019-02-12 19:47:21 +01:00
decnet
dns_resolver
dsa
net: dsa: slave: Don't propagate flag changes on down slave interfaces
2019-02-12 19:47:22 +01:00
ethernet
hsr
ieee802154
ife
ipv4
netfilter: nf_nat_snmp_basic: add missing length checks in ASN.1 cbs
2019-02-23 09:07:27 +01:00
ipv6
bpf: Fix [::] -> [::1] rewrite in sys_sendmsg
2019-02-27 10:08:52 +01:00
iucv
kcm
key
l2tp
l2tp: fix reading optional fields of L2TPv3
2019-02-06 17:30:06 +01:00
l3mdev
lapb
llc
mac80211
mac80211: Free mpath object when rhashtable insertion fails
2019-02-27 10:08:49 +01:00
mac802154
mpls
ncsi
netfilter
netfilter: nft_flow_offload: fix checking method of conntrack helper
2019-02-27 10:08:55 +01:00
netlabel
netlink
netrom
netrom: switch to sock timer API
2019-02-06 17:30:07 +01:00
nfc
nsh
openvswitch
openvswitch: Avoid OOB read when parsing flow nlattrs
2019-01-31 08:14:32 +01:00
packet
af_packet: fix raw sockets over 6in4 tunnel
2019-02-23 09:07:24 +01:00
phonet
psample
qrtr
rds
rds: fix refcount bug in rds_sock_addref
2019-02-12 19:47:22 +01:00
rfkill
rose
net/rose: fix NULL ax25_cb kernel panic
2019-02-06 17:30:07 +01:00
rxrpc
rxrpc: bad unlock balance in rxrpc_recvmsg
2019-02-12 19:47:22 +01:00
sched
net/sched: cls_flower: allocate mask dynamically in fl_change()
2019-01-31 08:14:33 +01:00
sctp
sctp: walk the list of asoc safely
2019-02-12 19:47:22 +01:00
smc
smc: move unhash as early as possible in smc_release()
2019-01-22 21:40:31 +01:00
strparser
sunrpc
xprtrdma: Double free in rpcrdma_sendctxs_create()
2019-02-27 10:08:53 +01:00
switchdev
tipc
tipc: fix node keep alive interval calculation
2019-02-12 19:47:06 +01:00
tls
net/tls: Init routines in create_ctx
2019-01-13 09:51:00 +01:00
unix
vmw_vsock
vsock: cope with memory allocation failure at socket creation time
2019-02-23 09:07:25 +01:00
wimax
wireless
nl80211: fix memory leak if validate_pae_over_nl80211() fails
2019-01-13 09:51:02 +01:00
x25
net/x25: do not hold the cpu too long in x25_new_lci()
2019-02-23 09:07:27 +01:00
xdp
xfrm
xfrm: refine validation of template and selector families
2019-02-15 08:10:13 +01:00
compat.c
Kconfig
Makefile
socket.c
sysctl_net.c