openwrt/target/linux/generic/pending-4.19/645-netfilter-nf_flow_table...

From: Felix Fietkau <nbd@nbd.name>
Date: Sun, 25 Mar 2018 21:10:55 +0200
Subject: [PATCH] netfilter: nf_flow_table: rework hardware offload timeout
 handling

Some offload implementations send keepalive packets + explicit
notifications of TCP FIN/RST packets. In this case it is more convenient
to simply let the driver update flow->timeout handling and use the
regular flow offload gc step.

For drivers that manage their own lifetime, a separate flag can be set
to avoid gc timeouts.

Signed-off-by: Felix Fietkau <nbd@nbd.name>
---

--- a/include/net/netfilter/nf_flow_table.h
+++ b/include/net/netfilter/nf_flow_table.h
@@ -76,6 +76,7 @@ struct flow_offload_tuple_rhash {
 #define FLOW_OFFLOAD_DYING	0x4
 #define FLOW_OFFLOAD_TEARDOWN	0x8
 #define FLOW_OFFLOAD_HW		0x10
+#define FLOW_OFFLOAD_KEEP	0x20
 
 struct flow_offload {
 	struct flow_offload_tuple_rhash		tuplehash[FLOW_OFFLOAD_DIR_MAX];
--- a/net/netfilter/nf_flow_table_core.c
+++ b/net/netfilter/nf_flow_table_core.c
@@ -355,7 +355,7 @@ static int nf_flow_offload_gc_step(struc
 		if (!teardown)
 			nf_ct_offload_timeout(flow);
 
-		if (nf_flow_in_hw(flow) && !teardown)
+		if ((flow->flags & FLOW_OFFLOAD_KEEP) && !teardown)
 			continue;
 
 		if (nf_flow_has_expired(flow) || teardown)
kernel: Copy patches from kernel 4.14 to 4.19 This just copies the files from the kernel 4.14 specific folders into the kernel 4.19 specific folder, no changes are done to the files in this commit. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> 6 years ago			`From: Felix Fietkau <nbd@nbd.name>`
			`Date: Sun, 25 Mar 2018 21:10:55 +0200`
			`Subject: [PATCH] netfilter: nf_flow_table: rework hardware offload timeout`
			`handling`

			`Some offload implementations send keepalive packets + explicit`
			`notifications of TCP FIN/RST packets. In this case it is more convenient`
			`to simply let the driver update flow->timeout handling and use the`
			`regular flow offload gc step.`

			`For drivers that manage their own lifetime, a separate flag can be set`
			`to avoid gc timeouts.`

			`Signed-off-by: Felix Fietkau <nbd@nbd.name>`
			`---`

			`--- a/include/net/netfilter/nf_flow_table.h`
			`+++ b/include/net/netfilter/nf_flow_table.h`
			`@@ -76,6 +76,7 @@ struct flow_offload_tuple_rhash {`
			`#define FLOW_OFFLOAD_DYING 0x4`
			`#define FLOW_OFFLOAD_TEARDOWN 0x8`
			`#define FLOW_OFFLOAD_HW 0x10`
			`+#define FLOW_OFFLOAD_KEEP 0x20`

			`struct flow_offload {`
			`struct flow_offload_tuple_rhash tuplehash[FLOW_OFFLOAD_DIR_MAX];`
			`--- a/net/netfilter/nf_flow_table_core.c`
			`+++ b/net/netfilter/nf_flow_table_core.c`
kernel: Make the patches apply on top of 4.19 This makes the patches which were just copied in the previous commit apply on top of kernel 4.19. The patches in the backports-4.19 folder were checked if they are really in kernel 4.19 based on the title and only removed if they were found in the upstream kernel. The following additional patches form the pending folder went into upstream Linux 4.19: pending-4.19/171-usb-dwc2-Fix-inefficient-copy-of-unaligned-buffers.patch pending-4.19/190-2-5-e1000e-Fix-wrong-comment-related-to-link-detection.patch pending-4.19/478-mtd-spi-nor-Add-support-for-XM25QH64A-and-XM25QH128A.patch pending-4.19/479-mtd-spi-nor-add-eon-en25qh32.patch pending-4.19/950-tty-serial-exar-generalize-rs485-setup.patch pending-4.19/340-MIPS-mm-remove-mips_dma_mapping_error.patch Bigger changes were introduced to the m25p80 spi nor driver, as far as I saw it in the new code, it now has the functionality provided in this patch: pending-4.19/450-mtd-m25p80-allow-fallback-from-spi_flash_read-to-reg.patch Part of this patch went upstream independent of OpenWrt: hack-4.19/220-gc_sections.patch This patch was reworked to match the changes done upstream. The MIPS DMA API changed a lot, this patch was rewritten to match the new DMA handling: pending-4.19/341-MIPS-mm-remove-no-op-dma_map_ops-where-possible.patch I did bigger manual changes to the following patches and I am not 100% sure if they are all correct: pending-4.19/0931-w1-gpio-fix-problem-with-platfom-data-in-w1-gpio.patch pending-4.19/411-mtd-partial_eraseblock_write.patch pending-4.19/600-netfilter_conntrack_flush.patch pending-4.19/611-netfilter_match_bypass_default_table.patch pending-4.19/670-ipv6-allow-rejecting-with-source-address-failed-policy.patch hack-4.19/211-host_tools_portability.patch hack-4.19/221-module_exports.patch hack-4.19/321-powerpc_crtsavres_prereq.patch hack-4.19/902-debloat_proc.patch This is based on patchset from Marko Ratkaj <marko.ratkaj@sartura.hr> Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> 6 years ago			`@@ -355,7 +355,7 @@ static int nf_flow_offload_gc_step(struc`
kernel: Copy patches from kernel 4.14 to 4.19 This just copies the files from the kernel 4.14 specific folders into the kernel 4.19 specific folder, no changes are done to the files in this commit. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> 6 years ago			`if (!teardown)`
			`nf_ct_offload_timeout(flow);`

			`- if (nf_flow_in_hw(flow) && !teardown)`
			`+ if ((flow->flags & FLOW_OFFLOAD_KEEP) && !teardown)`
			`continue;`

			`if (nf_flow_has_expired(flow) \|\| teardown)`