diff options
| author | Pablo Neira Ayuso <pablo@netfilter.org> | 2019-09-02 20:37:43 +0300 |
|---|---|---|
| committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2019-09-21 08:16:41 +0300 |
| commit | 2a0aa8a06aea258fdfba248a3af052ee83a8d45b (patch) | |
| tree | f78a93b7d4256f9e642d8c68b24210736ea6adad | |
| parent | dbc29aff8d04f134553326a0c533a442a1774041 (diff) | |
| download | linux-2a0aa8a06aea258fdfba248a3af052ee83a8d45b.tar.xz | |
netfilter: nf_flow_table: set default timeout after successful insertion
commit 110e48725db6262f260f10727d0fb2d3d25895e4 upstream.
Set up the default timeout for this new entry otherwise the garbage
collector might quickly remove it right after the flowtable insertion.
Fixes: ac2a66665e23 ("netfilter: add generic flow table infrastructure")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
| -rw-r--r-- | net/netfilter/nf_flow_table_core.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/net/netfilter/nf_flow_table_core.c b/net/netfilter/nf_flow_table_core.c index 5df7486bb416..8ade40512944 100644 --- a/net/netfilter/nf_flow_table_core.c +++ b/net/netfilter/nf_flow_table_core.c @@ -203,7 +203,7 @@ int flow_offload_add(struct nf_flowtable *flow_table, struct flow_offload *flow) return err; } - flow->timeout = (u32)jiffies; + flow->timeout = (u32)jiffies + NF_FLOW_TIMEOUT; return 0; } EXPORT_SYMBOL_GPL(flow_offload_add); |