Mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/ https://git.shady.money/linux/atom?h=v3.9 2013-04-18T21:40:41Z 2013-04-18T21:40:41Z Jozsef Kadlecsik kadlec@blackhole.kfki.hu 2013-04-13T12:30:54Z urn:sha1:5add189a125e6b497e31bffdaaed8145ec6d4984 The type when timeout support was enabled, could not list all elements, just the first ones which could fit into one netlink message: it just did not continue listing after the first message. Reported-by: Yoann JUET <yoann.juet@univ-nantes.fr> Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu> Tested-by: Yoann JUET <yoann.juet@univ-nantes.fr> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> 2013-04-12T09:46:31Z Florian Westphal fw@strlen.de 2013-04-11T04:22:39Z urn:sha1:c2d421e171868586939c328dfb91bab840fe4c49 following oops was reported: RIP: 0010:[<ffffffffa03227f2>] [<ffffffffa03227f2>] nf_nat_cleanup_conntrack+0x42/0x70 [nf_nat] RSP: 0018:ffff880202c63d40 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffff8801ac7bec28 RCX: ffff8801d0eedbe0 RDX: dead000000200200 RSI: 0000000000000011 RDI: ffffffffa03265b8 [..] Call Trace: [..] [<ffffffffa02febed>] destroy_conntrack+0xbd/0x110 [nf_conntrack] Happens when a conntrack timeout expires right after first part of the nat cleanup has completed (bysrc hash removal), but before part 2 has completed (re-initialization of nat area). [ destroy callback tries to delete bysrc again ] Patrick suggested to just remove the affected conntracks -- the connections won't work properly anyway without nat transformation. So, lets do that. Reported-by: CAI Qian <caiqian@redhat.com> Cc: Patrick McHardy <kaber@trash.net> Signed-off-by: Florian Westphal <fw@strlen.de> Acked-by: Patrick McHardy <kaber@trash.net> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> 2013-04-09T19:04:16Z Jozsef Kadlecsik kadlec@blackhole.kfki.hu 2013-04-09T08:57:20Z urn:sha1:6eb4c7e96e19fd2c38a103472048fc0e0e0a3ec3 If a resize is triggered the nomatch flag is not excluded at hashing, which leads to the element missed at lookup in the resized set. Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> 2013-04-09T19:02:11Z Jozsef Kadlecsik kadlec@blackhole.kfki.hu 2013-04-09T08:57:19Z urn:sha1:02f815cb6d3f57914228be84df9613ee5a01c2e6 The last element can be replaced or pushed off and in both cases the reference counter must be updated. Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> 2013-04-06T12:03:18Z Patrick McHardy kaber@trash.net 2013-04-05T08:13:30Z urn:sha1:3a7b21eaf4fb3c971bdb47a98f570550ddfe4471 Some Cisco phones create huge messages that are spread over multiple packets. After calculating the offset of the SIP body, it is validated to be within the packet and the packet is dropped otherwise. This breaks operation of these phones. Since connection tracking is supposed to be passive, just let those packets pass unmodified and untracked. Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> 2013-03-27T17:31:17Z Wei Yongjun yongjun_wei@trendmicro.com.cn 2013-03-27T03:57:10Z urn:sha1:5389090b59f7f72a30e25f5fd1fc560340543970 Fix to return a negative error code from the error handling case instead of 0, as returned elsewhere in function nf_conntrack_standalone_init(). Signed-off-by: Wei Yongjun <yongjun_wei@trendmicro.com.cn> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> 2013-03-25T13:21:30Z Pablo Neira Ayuso pablo@netfilter.org 2013-03-23T15:57:59Z urn:sha1:deadcfc3324410726cd6a663fb4fc46be595abe7 If user-space tries to create accounting object with an empty name, then return -EINVAL. Reported-by: Michael Zintakis <michael.zintakis@googlemail.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> 2013-03-25T13:21:27Z Wei Yongjun yongjun_wei@trendmicro.com.cn 2013-03-22T01:28:18Z urn:sha1:558724a5b2a73ad0c7638e21e8dffc419d267b6c Fix to return a negative error code from the error handling case instead of 0, as returned elsewhere in this function. Signed-off-by: Wei Yongjun <yongjun_wei@trendmicro.com.cn> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> 2013-03-19T12:21:52Z Julian Anastasov ja@ssi.bg 2013-03-09T21:25:05Z urn:sha1:bf93ad72cd8cfabe66a7b3d66236a1266d357189 In 3.7 we added code that uses ipv4_update_pmtu but after commit c5ae7d4192 (ipv4: must use rcu protection while calling fib_lookup) the RCU lock is not needed. Signed-off-by: Julian Anastasov <ja@ssi.bg> Signed-off-by: Simon Horman <horms@verge.net.au> 2013-03-19T12:21:51Z Julian Anastasov ja@ssi.bg 2013-03-09T21:25:04Z urn:sha1:0c12582fbcdea0cbb0dfd224e1c5f9a8428ffa18 Dmitry Akindinov is reporting for a problem where SYNs are looping between the master and backup server when the backup server is used as real server in DR mode and has IPVS rules to function as director. Even when the backup function is enabled we continue to forward traffic and schedule new connections when the current master is using the backup server as real server. While this is not a problem for NAT, for DR and TUN method the backup server can not determine if a request comes from client or from director. To avoid such loops add new sysctl flag backup_only. It can be needed for DR/TUN setups that do not need backup and director function at the same time. When the backup function is enabled we stop any forwarding and pass the traffic to the local stack (real server mode). The flag disables the director function when the backup function is enabled. For setups that enable backup function for some virtual services and director function for other virtual services there should be another more complex solution to support DR/TUN mode, may be to assign per-virtual service syncid value, so that we can differentiate the requests. Reported-by: Dmitry Akindinov <dimak@stalker.com> Tested-by: German Myzovsky <lawyer@sipnet.ru> Signed-off-by: Julian Anastasov <ja@ssi.bg> Signed-off-by: Simon Horman <horms@verge.net.au>