Home Explore Help
Sign In
GfA
/
linux_kernel
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

netfilter: xtables: add scheduling opportunity in get_counters

There are reports about spurious softlockups during iptables-restore, a
backtrace i saw points at get_counters -- it uses a sequence lock and also
has unbounded restart loop.

Signed-off-by: Florian Westphal <fw@strlen.de>
Acked-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Florian Westphal 8 years ago
parent
75c2631468
commit
a5d7a71456
3 changed files with 3 additions and 0 deletions
Split View Show Diff Stats
  1. 1 0
      net/ipv4/netfilter/arp_tables.c
  2. 1 0
      net/ipv4/netfilter/ip_tables.c
  3. 1 0
      net/ipv6/netfilter/ip6_tables.c

+ 1 - 0
net/ipv4/netfilter/arp_tables.c
View File 

@@ -629,6 +629,7 @@ static void get_counters(const struct xt_table_info *t,
 
 
 			ADD_COUNTER(counters[i], bcnt, pcnt);
 
 			++i;
 
+			cond_resched();
 
 		}
 
 	}
 
 }

+ 1 - 0
net/ipv4/netfilter/ip_tables.c
View File 

@@ -776,6 +776,7 @@ get_counters(const struct xt_table_info *t,
 
 
 			ADD_COUNTER(counters[i], bcnt, pcnt);
 
 			++i; /* macro does multi eval of i */
 
+			cond_resched();
 
 		}
 
 	}
 
 }

+ 1 - 0
net/ipv6/netfilter/ip6_tables.c
View File 

@@ -795,6 +795,7 @@ get_counters(const struct xt_table_info *t,
 
 
 			ADD_COUNTER(counters[i], bcnt, pcnt);
 
 			++i;
 
+			cond_resched();
 
 		}
 
 	}
 
 }