netfilter: add and use jump label for xt_tee
Don't bother testing if we need to switch to alternate stack unless TEE target is used. Suggested-by: Eric Dumazet <eric.dumazet@gmail.com> Signed-off-by: Florian Westphal <fw@strlen.de> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
This commit is contained in:
Florian Westphal
Pablo Neira Ayuso
parent
7814b6ec6d
commit
dcebd3153e
5 changed files with 16 additions and 2 deletions
|
|
@ -3,6 +3,7 @@
|
|||
|
||||
|
||||
#include <linux/netdevice.h>
|
||||
#include <linux/static_key.h>
|
||||
#include <uapi/linux/netfilter/x_tables.h>
|
||||
|
||||
/**
|
||||
|
|
@ -280,6 +281,12 @@ void xt_free_table_info(struct xt_table_info *info);
|
|||
*/
|
||||
DECLARE_PER_CPU(seqcount_t, xt_recseq);
|
||||
|
||||
/* xt_tee_enabled - true if x_tables needs to handle reentrancy
|
||||
*
|
||||
* Enabled if current ip(6)tables ruleset has at least one -j TEE rule.
|
||||
*/
|
||||
extern struct static_key xt_tee_enabled;
|
||||
|
||||
/**
|
||||
* xt_write_recseq_begin - start of a write section
|
||||
*
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue