diff options
author | Florian Westphal | 2015-07-14 17:51:09 +0200 |
---|---|---|
committer | Pablo Neira Ayuso | 2015-07-15 18:18:06 +0200 |
commit | dcebd3153e0a7749bb054ab73fa4e1ca33e9d3f9 (patch) | |
tree | b962b7b1bca5b3c8272781c991a9878fdfe4e880 /include/linux/netfilter | |
parent | netfilter: xtables: don't save/restore jumpstack offset (diff) | |
download | kernel-qcow2-linux-dcebd3153e0a7749bb054ab73fa4e1ca33e9d3f9.tar.gz kernel-qcow2-linux-dcebd3153e0a7749bb054ab73fa4e1ca33e9d3f9.tar.xz kernel-qcow2-linux-dcebd3153e0a7749bb054ab73fa4e1ca33e9d3f9.zip |
netfilter: add and use jump label for xt_tee
Don't bother testing if we need to switch to alternate stack
unless TEE target is used.
Suggested-by: Eric Dumazet <eric.dumazet@gmail.com>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include/linux/netfilter')
-rw-r--r-- | include/linux/netfilter/x_tables.h | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/include/linux/netfilter/x_tables.h b/include/linux/netfilter/x_tables.h index 149284557ca7..b006b719183f 100644 --- a/include/linux/netfilter/x_tables.h +++ b/include/linux/netfilter/x_tables.h @@ -3,6 +3,7 @@ #include <linux/netdevice.h> +#include <linux/static_key.h> #include <uapi/linux/netfilter/x_tables.h> /** @@ -280,6 +281,12 @@ void xt_free_table_info(struct xt_table_info *info); */ DECLARE_PER_CPU(seqcount_t, xt_recseq); +/* xt_tee_enabled - true if x_tables needs to handle reentrancy + * + * Enabled if current ip(6)tables ruleset has at least one -j TEE rule. + */ +extern struct static_key xt_tee_enabled; + /** * xt_write_recseq_begin - start of a write section * |