Pablo Neira Ayuso 735795f68b netfilter: flowtable: GC pushes back packets to classic path ... Since 41f2c7c342 ("net/sched: act_ct: Fix promotion of offloaded unreplied tuple"), flowtable GC pushes back flows with IPS_SEEN_REPLY back to classic path in every run, ie. every second. This is because of a new check for NF_FLOW_HW_ESTABLISHED which is specific of sched/act_ct. In Netfilter's flowtable case, NF_FLOW_HW_ESTABLISHED never gets set on and IPS_SEEN_REPLY is unreliable since users decide when to offload the flow before, such bit might be set on at a later stage. Fix it by adding a custom .gc handler that sched/act_ct can use to deal with its NF_FLOW_HW_ESTABLISHED bit. Fixes: 41f2c7c342 ("net/sched: act_ct: Fix promotion of offloaded unreplied tuple") Reported-by: Vladimir Smelhaus <vl.sm@email.cz> Reviewed-by: Paul Blakey <paulb@nvidia.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>		2023-10-25 11:35:46 +02:00
..
acpi	cpu-hotplug: Provide prototypes for arch CPU registration	2023-10-11 14:27:37 +02:00
asm-generic	hyperv-fixes for v6.6-rc6	2023-10-10 11:01:21 -07:00
clocksource
crypto
drm
dt-bindings
keys
kunit
kvm	KVM: arm64: timers: Correctly handle TGE flip with CNTPOFF_EL2	2023-10-12 16:55:21 +01:00
linux	Including fixes from bluetooth, netfilter, WiFi.	2023-10-19 12:08:18 -07:00
math-emu
media
memory
misc
net	netfilter: flowtable: GC pushes back packets to classic path	2023-10-25 11:35:46 +02:00
pcmcia
ras
rdma
rv
scsi	ATA fixes for 6.6-rc4	2023-09-29 13:38:34 -07:00
soc
sound	ASoC: core: Do not call link_exit() on uninitialized rtd objects	2023-09-29 14:17:49 +02:00
target
trace	neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section	2023-10-18 11:16:43 +01:00
uapi	Including fixes from CAN and BPF.	2023-10-12 13:07:00 -07:00
ufs
vdso
video	fbdev: uvesafb: Remove uvesafb_exec() prototype from include/video/uvesafb.h	2023-10-16 23:19:34 +02:00
xen