netfilter: nfacct: per network namespace support - Move the nfnl_acct_list into the network namespace, initialize and destroy it per namespace - Keep track of refcnt on nfacct objects, the old logic does not longer work with a per namespace list - Adjust xt_nfacct to pass the namespace when registring objects Signed-off-by: Andreas Schultz <[email protected]> Signed-off-by: Pablo Neira Ayuso <[email protected]>

commit: 3499abb249bb5ed9d21031944bc3059ec4aa2909 [log] [tgz]
author: Andreas Schultz <[email protected]> Wed Aug 05 17:51:45 2015 +0200
committer: Pablo Neira Ayuso <[email protected]> Fri Aug 07 11:50:56 2015 +0200
tree: a9aa2226572e58808719670ba93e0192953db302
parent: d2168e849ebf617b2b7feae44c0c0baf739cb610 [diff] [blame]
diff --git a/include/net/net_namespace.h b/include/net/net_namespace.h
index e951453..2dcea63 100644
--- a/include/net/net_namespace.h
+++ b/include/net/net_namespace.h

@@ -118,6 +118,9 @@
 #endif
 	struct sock		*nfnl;
 	struct sock		*nfnl_stash;
+#if IS_ENABLED(CONFIG_NETFILTER_NETLINK_ACCT)
+	struct list_head        nfnl_acct_list;
+#endif
 #endif
 #ifdef CONFIG_WEXT_CORE
 	struct sk_buff_head	wext_nlevents;
commit	3499abb249bb5ed9d21031944bc3059ec4aa2909	[log] [tgz]
author	Andreas Schultz <[email protected]>	Wed Aug 05 17:51:45 2015 +0200
committer	Pablo Neira Ayuso <[email protected]>	Fri Aug 07 11:50:56 2015 +0200
tree	a9aa2226572e58808719670ba93e0192953db302
parent	d2168e849ebf617b2b7feae44c0c0baf739cb610 [diff] [blame]