projects / platform / kernel / linux-starfive.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c92c271) | patch
netfilter: nat: avoid long-running port range loop
authorFlorian Westphal <fw@strlen.de>
Tue, 6 Sep 2022 15:20:36 +0000 (17:20 +0200)
committerFlorian Westphal <fw@strlen.de>
Wed, 7 Sep 2022 14:46:04 +0000 (16:46 +0200)
commitadda60cc2bb0fa46bed004070f29f90db96afbb3
tree9efa77eccff0666b38dbb5cee926625f19ef5aa1tree | snapshot
parentc92c27171040554cfda7a3fc925e9dbcb5b4a698commit | diff
netfilter: nat: avoid long-running port range loop

Looping a large port range takes too long. Instead select a random
offset within [ntohs(exp->saved_proto.tcp.port), 65535] and try 128
ports.

This is a rehash of an erlier patch to do the same, but generalized
to handle other helpers as well.

Link: https://patchwork.ozlabs.org/project/netfilter-devel/patch/20210920204439.13179-2-Cole.Dishington@alliedtelesis.co.nz/
Signed-off-by: Florian Westphal <fw@strlen.de>
net/netfilter/nf_nat_helper.c diff | blob | history
Domain: System / Kernel;