mbox

[net-next,0/8] netfilter updates for next

Message ID 20231010145343.12551-1-fw@strlen.de (mailing list archive)
State Accepted
Delegated to: Netdev Maintainers
Headers show

Pull-request

https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf-next.git tags/nf-next-23-10-10

Message

Florian Westphal Oct. 10, 2023, 2:53 p.m. UTC
Hello,

The following request contains updates for your *net-next* tree.

First 5 patches, from Phil Sutter, clean up nftables dumpers to
use the context buffer in the netlink_callback structure rather
than a kmalloc'd buffer.

Patch 6, from myself, zaps dead code and replaces the helper function
with a small inlined helper.

Patch 7, also from myself, removes another pr_debug and replaces it
with the existing nf_log-based debug helpers.

Last patch, from George Guo, gets nft_table comments back in
sync with the structure members.

The following changes since commit f0107b864f004bc6fa19bf6d5074b4a366f3e16a:

  atm: fore200e: Drop unnecessary of_match_device() (2023-10-10 12:41:17 +0200)

are available in the Git repository at:

  https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf-next.git tags/nf-next-23-10-10

for you to fetch changes up to 94ecde833be5779f8086c3a094dfa51e1dbce75f:

  netfilter: cleanup struct nft_table (2023-10-10 16:34:28 +0200)

----------------------------------------------------------------
netfilter net-next pull request 2023-10-10

----------------------------------------------------------------
Florian Westphal (2):
      netfilter: conntrack: simplify nf_conntrack_alter_reply
      netfilter: conntrack: prefer tcp_error_log to pr_debug

George Guo (1):
      netfilter: cleanup struct nft_table

Phil Sutter (5):
      netfilter: nf_tables: Always allocate nft_rule_dump_ctx
      netfilter: nf_tables: Drop pointless memset when dumping rules
      netfilter: nf_tables: Carry reset flag in nft_rule_dump_ctx
      netfilter: nf_tables: Carry s_idx in nft_rule_dump_ctx
      netfilter: nf_tables: Don't allocate nft_rule_dump_ctx

 include/net/netfilter/nf_conntrack.h   | 14 ++++--
 include/net/netfilter/nf_tables.h      |  5 ++-
 net/netfilter/nf_conntrack_core.c      | 18 --------
 net/netfilter/nf_conntrack_helper.c    |  7 +--
 net/netfilter/nf_conntrack_proto_tcp.c |  7 +--
 net/netfilter/nf_tables_api.c          | 80 +++++++++++++---------------------
 6 files changed, 50 insertions(+), 81 deletions(-)