iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/net/ipv6
History
Eric Dumazet 00cd7bf9f9 netfilter: nf_defrag_ipv6: allow nf_conntrack_frag6_high_thresh increases 
Currently, net.netfilter.nf_conntrack_frag6_high_thresh can only be lowered.

I found this issue while investigating a probable kernel issue
causing flakes in tools/testing/selftests/net/ip_defrag.sh

In particular, these sysctl changes were ignored:
	ip netns exec "${NETNS}" sysctl -w net.netfilter.nf_conntrack_frag6_high_thresh=9000000 >/dev/null 2>&1
	ip netns exec "${NETNS}" sysctl -w net.netfilter.nf_conntrack_frag6_low_thresh=7000000  >/dev/null 2>&1

This change is inline with commit 836196239298 ("net/ipfrag: let ip[6]frag_high_thresh
in ns be higher than in init_net")

Fixes: 8db3d41569bb ("netfilter: nf_defrag_ipv6: use net_generic infra")
Signed-off-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
2022-08-24 08:06:44 +02:00
..
ila
net: ipv6: check return value of rhashtable_init
2021-09-28 12:59:24 +01:00
netfilter
netfilter: nf_defrag_ipv6: allow nf_conntrack_frag6_high_thresh increases
2022-08-24 08:06:44 +02:00
addrconf_core.c
net: rename reference+tracking helpers
2022-06-09 21:52:55 -07:00
addrconf.c
net: ipv6: avoid accepting values greater than 2 for accept_untracked_na
2022-07-21 19:11:10 -07:00
addrlabel.c
ipv6: addrlabel: fix possible memory leak in ip6addrlbl_net_init
2020-11-25 11:20:16 -08:00
af_inet6.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-07-21 13:03:39 -07:00
ah6.c
ipv6: ah6: use swap() to make code cleaner
2021-11-18 12:00:15 +00:00
anycast.c
ipv6: fix memory leaks on IPV6_ADDRFORM path
2020-07-30 16:30:55 -07:00
calipso.c
cipso,calipso: resolve a number of problems with the DOI refcounts
2021-03-04 15:26:57 -08:00
datagram.c
net: annotate races around sk->sk_bound_dev_if
2022-05-16 10:31:05 +01:00
esp6_offload.c
net: Fix esp GSO on inter address family tunnels.
2022-03-07 13:14:04 +01:00
esp6.c
esp6: Fix spelling mistake
2022-07-04 10:20:11 +02:00
exthdrs_core.c
exthdrs_offload.c
exthdrs.c
net: ipv6: add skb drop reasons to TLV parse
2022-04-13 13:09:57 +01:00
fib6_notifier.c
fib6_rules.c
ipv6: change fib6_rules_net_exit() to batch mode
2022-02-08 20:41:34 -08:00
fou6.c
net: Add MODULE_DESCRIPTION entries to network modules
2020-06-20 21:33:57 -07:00
icmp.c
icmp: Fix data-races around sysctl_icmp_echo_enable_probe.
2022-07-13 12:56:49 +01:00
inet6_connection_sock.c
lsm,selinux: pass flowi_common instead of flowi to the LSM hooks
2020-11-23 18:36:21 -05:00
inet6_hashtables.c
ipv6: add READ_ONCE(sk->sk_bound_dev_if) in INET6_MATCH()
2022-05-16 10:31:06 +01:00
ioam6_iptunnel.c
ipv6: ioam: Insertion frequency in lwtunnel output
2022-02-04 20:24:45 -08:00
ioam6.c
net: ipv6: Get rcv timestamp if needed when handling hop-by-hop IOAM option
2022-03-03 14:38:48 +00:00
ip6_checksum.c
ip6_fib.c
ipv6: annotate accesses to fn->fn_sernum
2022-01-20 20:18:37 -08:00
ip6_flowlabel.c
ipv6: per-netns exclusive flowlabel checks
2022-02-16 20:37:47 -08:00
ip6_gre.c
ip6_gre: use actual protocol to select xmit
2022-07-13 12:10:22 +01:00
ip6_icmp.c
net: icmp: pass zeroed opts from icmp{,v6}_ndo_send before sending
2021-02-23 11:29:52 -08:00
ip6_input.c
tcp/udp: Make early_demux back namespacified.
2022-07-15 18:50:35 -07:00
ip6_offload.c
ipv6/gro: insert temporary HBH/jumbo header
2022-05-16 10:18:56 +01:00
ip6_offload.h
ip6_output.c
ipv6: do not use RT_TOS for IPv6 flowlabel
2022-08-09 22:19:21 -07:00
ip6_tunnel.c
ip6_tunnel: Fix the type of functions
2022-08-13 10:27:36 +01:00
ip6_udp_tunnel.c
net: Make locking in sock_bindtoindex optional
2020-06-01 14:57:14 -07:00
ip6_vti.c
net: rename reference+tracking helpers
2022-06-09 21:52:55 -07:00
ip6mr.c
ip6mr: remove stray rcu_read_unlock() from ip6_mr_forward()
2022-07-26 19:59:18 -07:00
ipcomp6.c
xfrm: remove hdr_offset indirection
2021-06-11 14:48:50 +02:00
ipv6_sockglue.c
ipv6: annotate some data-races around sk->sk_prot
2022-02-18 11:53:28 +00:00
Kconfig
crypto: lib - make the sha1 library optional
2022-07-15 16:43:59 +08:00
Makefile
net: ipv6: use ipv6-y directly instead of ipv6-objs
2021-09-28 13:13:40 +01:00
mcast_snoop.c
net: bridge: mcast: fix broken length + header check for MRDv6 Adv.
2021-04-27 14:02:06 -07:00
mcast.c
net: mld: fix reference count leak in mld_{query | report}_work()
2022-07-25 12:33:59 +01:00
mip6.c
xfrm: ipv6: move mip6_rthdr_offset into xfrm core
2021-06-11 14:48:50 +02:00
ndisc.c
net: fix potential refcount leak in ndisc_router_discovery()
2022-08-15 11:40:28 +01:00
netfilter.c
netfilter: Use l3mdev flow key when re-routing mangled packets
2022-05-16 13:03:29 +02:00
output_core.c
ipv6: use prandom_u32() for ID generation
2021-05-31 22:12:08 -07:00
ping.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-07-28 18:21:16 -07:00
proc.c
net: udp: introduce UDP_MIB_MEMERRORS for udp_mem
2020-11-09 15:34:44 -08:00
protocol.c
raw.c
raw: remove unused variables from raw6_icmp_error()
2022-06-22 18:48:08 -07:00
reassembly.c
net: ipv6: Handle delivery_time in ipv6 defrag
2022-03-03 14:38:48 +00:00
route.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-07-14 15:27:35 -07:00
rpl_iptunnel.c
net: ipv6: rpl_iptunnel: simplify the return expression of rpl_do_srh()
2020-12-08 16:22:54 -08:00
rpl.c
net: ipv6: rpl*: Fix strange kerneldoc warnings due to bad header
2020-10-30 12:12:52 -07:00
seg6_hmac.c
net: ipv6: unexport __init-annotated seg6_hmac_net_init()
2022-06-28 21:23:30 -07:00
seg6_iptunnel.c
seg6: add support for SRv6 H.L2Encaps.Red behavior
2022-07-29 12:14:03 +01:00
seg6_local.c
net: seg6: initialize induction variable to first valid array index
2022-08-05 19:34:54 -07:00
seg6.c
icmp: ICMPV6: Examine invoking packet for Segment Route Headers.
2022-01-04 12:17:35 +00:00
sit.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-06-30 16:31:00 -07:00
syncookies.c
tcp: Fix data-races around sysctl_tcp_syncookies.
2022-07-18 12:21:54 +01:00
sysctl_net_ipv6.c
net: sysctl: introduce sysctl SYSCTL_THREE
2022-05-03 10:15:06 +02:00
tcp_ipv6.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-07-28 18:21:16 -07:00
tcpv6_offload.c
net: move gro definitions to include/net/gro.h
2021-11-16 13:16:54 +00:00
tunnel6.c
tunnel6: add tunnel6_input_afinfo for ipip and ipv6 tunnels
2020-07-09 12:52:37 +02:00
udp_impl.h
net: remove noblock parameter from recvmsg() entities
2022-04-12 15:00:25 +02:00
udp_offload.c
gro: remove rcu_read_lock/rcu_read_unlock from gro_receive handlers
2021-11-24 17:21:42 -08:00
udp.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2022-07-21 13:03:39 -07:00
udplite.c
net: add per_cpu_fw_alloc field to struct proto
2022-06-10 16:21:26 -07:00
xfrm6_input.c
xfrm: state: remove extract_input indirection from xfrm_state_afinfo
2020-05-06 09:40:08 +02:00
xfrm6_output.c
xfrm: fix tunnel model fragmentation behavior
2022-03-01 12:08:40 +01:00
xfrm6_policy.c
net: rename reference+tracking helpers
2022-06-09 21:52:55 -07:00
xfrm6_protocol.c
xfrm: add support for UDPv6 encapsulation of ESP
2020-04-28 11:28:36 +02:00
xfrm6_state.c
xfrm: remove output_finish indirection from xfrm_state_afinfo
2020-05-06 09:40:08 +02:00
xfrm6_tunnel.c
xfrm: remove description from xfrm_type struct
2021-06-09 09:38:52 +02:00