review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Laura Garcia Liebana <nevola@gmail.com>
	Tue, 18 Jun 2019 09:11:02 +0000 (11:11 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Wed, 19 Jun 2019 15:48:36 +0000 (17:48 +0200)
commit	79ebb5bb4e38a58ca796dd242b855a4982e101d7
tree	3699b34059266b749667aea4dc780db366136648	tree \| snapshot
parent	2f0513d487d2619c751fd08f5b7c64e759435ff4	commit \| diff

netfilter: nf_tables: enable set expiration time for set elements

Currently, the expiration of every element in a set or map
is a read-only parameter generated at kernel side.

This change will permit to set a certain expiration date
per element that will be required, for example, during
stateful replication among several nodes.

This patch handles the NFTA_SET_ELEM_EXPIRATION in order
to configure the expiration parameter per element, or
will use the timeout in the case that the expiration
is not set.

Signed-off-by: Laura Garcia Liebana <nevola@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

include/net/netfilter/nf_tables.h		diff \| blob \| history
net/netfilter/nf_tables_api.c		diff \| blob \| history
net/netfilter/nft_dynset.c		diff \| blob \| history