Skip to content

Commit

Permalink
[NETFILTER]: ip_conntrack: properly use RCU for ip_conntrack_destroye…
Browse files Browse the repository at this point in the history 
…d callback

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
  • Loading branch information
Patrick McHardy authored and David S. Miller committed Feb 12, 2007
1 parent c0e912d commit 6b48a7d
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 6 deletions.
9 changes: 6 additions & 3 deletions net/ipv4/netfilter/ip_conntrack_core.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -303,6 +303,7 @@ destroy_conntrack(struct nf_conntrack *nfct)
struct ip_conntrack *ct = (struct ip_conntrack *)nfct;
struct ip_conntrack_protocol *proto;
struct ip_conntrack_helper *helper;
typeof(ip_conntrack_destroyed) destroyed;

DEBUGP("destroy_conntrack(%p)\n", ct);
IP_NF_ASSERT(atomic_read(&nfct->use) == 0);
Expand All @@ -322,10 +323,12 @@ destroy_conntrack(struct nf_conntrack *nfct)
proto = __ip_conntrack_proto_find(ct->tuplehash[IP_CT_DIR_REPLY].tuple.dst.protonum);
if (proto && proto->destroy)
proto->destroy(ct);
rcu_read_unlock();

if (ip_conntrack_destroyed)
ip_conntrack_destroyed(ct);
destroyed = rcu_dereference(ip_conntrack_destroyed);
if (destroyed)
destroyed(ct);

rcu_read_unlock();

write_lock_bh(&ip_conntrack_lock);
/* Expectations will have been removed in clean_from_lists,
Expand Down
7 changes: 4 additions & 3 deletions net/ipv4/netfilter/ip_nat_core.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -604,8 +604,8 @@ static int __init ip_nat_init(void)
}

/* FIXME: Man, this is a hack. <SIGH> */
IP_NF_ASSERT(ip_conntrack_destroyed == NULL);
ip_conntrack_destroyed = &ip_nat_cleanup_conntrack;
IP_NF_ASSERT(rcu_dereference(ip_conntrack_destroyed) == NULL);
rcu_assign_pointer(ip_conntrack_destroyed, ip_nat_cleanup_conntrack);

/* Initialize fake conntrack so that NAT will skip it */
ip_conntrack_untracked.status |= IPS_NAT_DONE_MASK;
Expand All @@ -623,7 +623,8 @@ static int clean_nat(struct ip_conntrack *i, void *data)
static void __exit ip_nat_cleanup(void)
{
ip_ct_iterate_cleanup(&clean_nat, NULL);
ip_conntrack_destroyed = NULL;
rcu_assign_pointer(ip_conntrack_destroyed, NULL);
synchronize_rcu();
vfree(bysource);
}

Expand Down

0 comments on commit 6b48a7d

Please sign in to comment.