0b2f3212b5
To avoid allocation of the conntrack extension area when possible,
the default behaviour was changed to only allocate the event extension
if a userspace program is subscribed to a notification group.
Problem is that while 'conntrack -E' does enable the event allocation
behind the scenes, 'conntrack -E expect' does not: no expectation events
are delivered unless user sets
"net.netfilter.nf_conntrack_events" back to 1 (always on).
Fix the autodetection to also consider EXP type group.
We need to track the 6 event groups (3+3, new/update/destroy for events and
for expectations each) independently, else we'd disable events again
if an expectation group becomes empty while there is still an active
event group.
Fixes:
|
||
---|---|---|
.. | ||
bpf.h | ||
can.h | ||
conntrack.h | ||
core.h | ||
flow_table.h | ||
generic.h | ||
hash.h | ||
ieee802154_6lowpan.h | ||
ipv4.h | ||
ipv6.h | ||
mctp.h | ||
mib.h | ||
mpls.h | ||
netfilter.h | ||
nexthop.h | ||
nftables.h | ||
packet.h | ||
sctp.h | ||
smc.h | ||
unix.h | ||
xdp.h | ||
xfrm.h |