xiaomi-sm8450/android_kernel_xiaomi_sm8450
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

netfilter: conntrack: limit sysctl setting for boolean options

Browse Source 
We use the zero and one to limit the boolean options setting.
After this patch we only set 0 or 1 to boolean options for nf
conntrack sysctl.

Signed-off-by: Tonghao Zhang <xiangxia.m.yue@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
This commit is contained in:
Tonghao Zhang
2019-04-07 08:14:20 -07:00
committed by Pablo Neira Ayuso
parent a4cb98f32c
commit 8f14c99c7e
2 changed files with 36 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
include/net/netns/conntrack.h
View File

@@ -24,9 +24,9 @@ struct nf_generic_net {
struct nf_tcp_net {
unsigned int timeouts[TCP_CONNTRACK_TIMEOUT_MAX];
unsigned int tcp_loose;
unsigned int tcp_be_liberal;
unsigned int tcp_max_retrans;
int tcp_loose;
int tcp_be_liberal;
int tcp_max_retrans;
};
enum udp_conntrack {