git.proxmox.com Git - mirror_ubuntu-kernels.git/commit

author	Felix Fietkau <nbd@nbd.name>
	Mon, 26 Feb 2018 09:15:21 +0000 (10:15 +0100)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Tue, 24 Apr 2018 08:28:54 +0000 (10:28 +0200)
commit	59c466dd68e796f3a7a0709d90c72ce2d84e29c2
tree	0c0222d84d3a45a07d09416fe97ace13111b0f5b	tree
parent	6bdc3c68d94c5d6adc675ee55361962e9dd2489d	commit \| diff

netfilter: nf_flow_table: add a new flow state for tearing down offloading

On cleanup, this will be treated differently from FLOW_OFFLOAD_DYING:

If FLOW_OFFLOAD_DYING is set, the connection is going away, so both the
offload state and the connection tracking entry will be deleted.

If FLOW_OFFLOAD_TEARDOWN is set, the connection remains alive, but
the offload state is torn down. This is useful for cases that require
more complex state tracking / timeout handling on TCP, or if the
connection has been idle for too long.

Support for sending flows back to the slow path will be implemented in
a following patch

Signed-off-by: Felix Fietkau <nbd@nbd.name>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

include/net/netfilter/nf_flow_table.h		diff \| blob \| blame \| history
net/netfilter/nf_flow_table_core.c		diff \| blob \| blame \| history