[NETNS][FRAGS]: Isolate the secret interval from namespaces.

Since we have one hashtable to lookup the fragment, having different secret_interval-s for hash rebuild doesn't make sense, so move this one to inet_frags. The inet_frags_ctl becomes empty after this, so remove it. The appropriate ctl table is kept read-only in namespaces. Signed-off-by: Pavel Emelyanov <xemul@openvz.org> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Pavel Emelyanov <xemul@openvz.org> 2008-01-22 09:11:04 -0500
committer: David S. Miller <davem@davemloft.net> 2008-01-28 18:10:39 -0500
commit: 3b4bc4a2bfe80d01ebd4f2b6dcc58986c970ed16 (patch)
tree: d9dea3af7fb8fc828af0ba484c1fc06007dce351 /net/ipv6
parent: e31e0bdc7e7fb9a4b09d2f3266c035a18fdcee9d (diff)
2 files changed, 3 insertions, 9 deletions
diff --git a/net/ipv6/netfilter/nf_conntrack_reasm.c b/net/ipv6/netfilter/nf_conntrack_reasm.c
index c75ac17e3945..6eed991a4a3f 100644
--- a/net/ipv6/netfilter/nf_conntrack_reasm.c
+++ b/net/ipv6/netfilter/nf_conntrack_reasm.c
@@ -70,10 +70,6 @@ struct nf_ct_frag6_queue
        __u16                   nhoffset;
 };
-static struct inet_frags_ctl nf_frags_ctl __read_mostly = {
-        .secret_interval = 10 * 60 * HZ,
-};
 static struct inet_frags nf_frags;
 static struct netns_frags nf_init_frags;
@@ -701,7 +697,6 @@ int nf_ct_frag6_kfree_frags(struct sk_buff *skb)
 int nf_ct_frag6_init(void)
 {
-        nf_frags.ctl = &nf_frags_ctl;
        nf_frags.hashfn = nf_hashfn;
        nf_frags.constructor = ip6_frag_init;
        nf_frags.destructor = NULL;
@@ -709,6 +704,7 @@ int nf_ct_frag6_init(void)
        nf_frags.qsize = sizeof(struct nf_ct_frag6_queue);
        nf_frags.match = ip6_frag_match;
        nf_frags.frag_expire = nf_ct_frag6_expire;
+        nf_frags.secret_interval = 10 * 60 * HZ;
        nf_init_frags.timeout = IPV6_FRAG_TIMEOUT;
        nf_init_frags.high_thresh = 256 * 1024;
        nf_init_frags.low_thresh = 192 * 1024;
diff --git a/net/ipv6/reassembly.c b/net/ipv6/reassembly.c
index 85f3fa382230..852070087307 100644
--- a/net/ipv6/reassembly.c
+++ b/net/ipv6/reassembly.c
@@ -658,7 +658,7 @@ static struct ctl_table ip6_frags_ctl_table[] = {
        {
                .ctl_name       = NET_IPV6_IP6FRAG_SECRET_INTERVAL,
                .procname       = "ip6frag_secret_interval",
-                .data           = &init_net.ipv6.sysctl.frags.secret_interval,
+                .data           = &ip6_frags.secret_interval,
                .maxlen         = sizeof(int),
                .mode           = 0644,
                .proc_handler   = &proc_dointvec_jiffies,
@@ -719,12 +719,9 @@ static inline void ip6_frags_sysctl_unregister(struct net *net)
 static int ipv6_frags_init_net(struct net *net)
 {
-        ip6_frags.ctl = &net->ipv6.sysctl.frags;
        net->ipv6.frags.high_thresh = 256 * 1024;
        net->ipv6.frags.low_thresh = 192 * 1024;
        net->ipv6.frags.timeout = IPV6_FRAG_TIMEOUT;
-        net->ipv6.sysctl.frags.secret_interval = 10 * 60 * HZ;
        inet_frags_init_net(&net->ipv6.frags);
@@ -748,6 +745,7 @@ int __init ipv6_frag_init(void)
        ip6_frags.qsize = sizeof(struct frag_queue);
        ip6_frags.match = ip6_frag_match;
        ip6_frags.frag_expire = ip6_frag_expire;
+        ip6_frags.secret_interval = 10 * 60 * HZ;
        inet_frags_init(&ip6_frags);
 out:
        return ret;
author	Pavel Emelyanov <xemul@openvz.org>	2008-01-22 09:11:04 -0500
committer	David S. Miller <davem@davemloft.net>	2008-01-28 18:10:39 -0500
commit	3b4bc4a2bfe80d01ebd4f2b6dcc58986c970ed16 (patch)
tree	d9dea3af7fb8fc828af0ba484c1fc06007dce351 /net/ipv6
parent	e31e0bdc7e7fb9a4b09d2f3266c035a18fdcee9d (diff)