lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Thu, 2 Jul 2009 00:33:35 +0800 From: Herbert Xu <herbert@...dor.apana.org.au> To: Patrick McHardy <kaber@...sh.net> Cc: Mark McLoughlin <markmc@...hat.com>, netdev <netdev@...r.kernel.org>, "David S. Miller" <davem@...emloft.net> Subject: Re: [PATCH] bridge: make bridge-nf-call-*tables default configurable On Wed, Jul 01, 2009 at 11:21:44AM +0200, Patrick McHardy wrote: > > Agreed, at least as long as this is still the default behaviour. > Mark, could you add this to your patch? br_nf_pre_routing_finish() > looks like a good place to print a warning when skb->nfct != NULL. Here's a suggestion: Can we add another field to the conntrack tuple? This would be used to ensure that every bridge's conntrack is distinct from each other, as well as that of the system IP stack. Cheers, -- Visit Openswan at http://www.openswan.org/ Email: Herbert Xu ~{PmV>HI~} <herbert@...dor.apana.org.au> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists