On Fri, 2016-08-19 at 17:16 +0200, Florian Westphal wrote: > Hmm, ____nf_conntrack_find caller needs to hold rcu_read_lock, > in case object is free'd SLAB_DESTROY_BY_RCU should delay actual release > of the page. Well, point is that SLAB_DESTROY_BY_RCU means that we have no grace period, and object can be immediately reused and recycled. @next pointer can definitely be overwritten. > > Should be same as (old) 'death_by_timeout' timer firing during > hlist_nulls_for_each_entry_rcu walk. > > Thanks for looking at this Eric! -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
