| Message ID | 20180920205049.15143-1-dsahern@kernel.org |
|---|---|
| Headers | show |
| Series | net: wean netfilter from fib_nh | expand |
dsahern@kernel.org <dsahern@kernel.org> wrote: > From: David Ahern <dsahern@gmail.com> > > Two netfilter modules reference fib_nh. In both cases the code is > only checking if a nexthop in a fib_info uses a specific device. > Both instances essentially duplicate code from __fib_validate_source, > so move that code into a helper and flip the netfilter modules to > use it. Lokks good to me, thanks David.
From: dsahern@kernel.org Date: Thu, 20 Sep 2018 13:50:46 -0700 > From: David Ahern <dsahern@gmail.com> > > Two netfilter modules reference fib_nh. In both cases the code is > only checking if a nexthop in a fib_info uses a specific device. > Both instances essentially duplicate code from __fib_validate_source, > so move that code into a helper and flip the netfilter modules to > use it. Series applied, thanks David.
From: David Ahern <dsahern@gmail.com> Two netfilter modules reference fib_nh. In both cases the code is only checking if a nexthop in a fib_info uses a specific device. Both instances essentially duplicate code from __fib_validate_source, so move that code into a helper and flip the netfilter modules to use it. David Ahern (3): net/ipv4: Move device validation to helper netfilter: rpfilter: Convert rpfilter_lookup_reverse to new dev helper netfilter: nft_fib: Convert nft_fib4_eval to new dev helper include/net/ip_fib.h | 1 + net/ipv4/fib_frontend.c | 44 ++++++++++++++++++++++++--------------- net/ipv4/netfilter/ipt_rpfilter.c | 17 +-------------- net/ipv4/netfilter/nft_fib_ipv4.c | 27 ++++++------------------ 4 files changed, 35 insertions(+), 54 deletions(-)