lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date:	Fri, 20 Apr 2012 12:45:52 +0400
From:	Pavel Emelyanov <xemul@...allels.com>
To:	"Eric W. Biederman" <ebiederm@...ssion.com>,
	David Miller <davem@...emloft.net>
CC:	"netdev@...r.kernel.org" <netdev@...r.kernel.org>,
	"Serge E. Hallyn" <serge@...lyn.com>,
	Gao feng <gaofeng@...fujitsu.com>,
	"pablo@...filter.org" <pablo@...filter.org>,
	Stephen Hemminger <shemminger@...tta.com>
Subject: Re: [PATCH net-next 00/19] net: Sysctl simplifications and enhancements

On 04/20/2012 03:17 AM, Eric W. Biederman wrote:
> 
> Summary:
> - Kill approximately 400 lines of code
> - Allow all networking sysctls with just CAP_NET_ADMIN
> - Hide all networking sysctls that don't apply to your current network namespace.
> - Uniformly register flat sysctl tables not sysctl tables with .child entries
> - Readable string paths for registering sysctls
> 
> Eric W. Biederman (19):
>       net: Implement register_net_sysctl.
>       net sysctl:  Register an empty /proc/sys/net
>       net sysctl: Initialize the network sysctls sooner to avoid problems.
>       net: Kill register_sysctl_rotable
>       net: Move all of the network sysctls without a namespace into init_net.
>       net core: Remove unneded creation of an empty  net/core sysctl directory
>       net ipv6: Remove unneded registration of an empty net/ipv6/neigh
>       net ipv4: Remove the unneeded registration of an empty net/ipv4/neigh
>       net ax25: Simplify and cleanup the ax25 sysctl handling.
>       net llc: Don't use sysctl tables with .child entries.
>       net ipv6: Don't use sysctl tables with .child entries.
>       net neighbour:  Convert to use register_net_sysctl
>       net decnet:  Convert to use register_net_sysctl
>       net ipv6:  Convert addrconf to use register_net_sysctl
>       net ipv4:  Convert devinet to use register_net_sysctl
>       net: Convert nf_conntrack_proto to use register_net_sysctl
>       net: Convert all sysctl registrations to register_net_sysctl
>       net: Delete all remaining instances of ctl_path
>       net: Remove register_net_sysctl_table

After resolving issues with Eric

Acked-by: Pavel Emelyanov <xemul@...allels.com>

Thanks,
Pavel

>  drivers/infiniband/core/ucma.c                 |   10 +--
>  include/linux/netfilter.h                      |    6 --
>  include/net/ax25.h                             |   10 ++--
>  include/net/ip.h                               |    3 -
>  include/net/ip_vs.h                            |    2 -
>  include/net/ipv6.h                             |    3 -
>  include/net/net_namespace.h                    |   12 ++--
>  include/net/netfilter/nf_conntrack_l3proto.h   |    2 +-
>  include/net/netns/ipv6.h                       |    4 +-
>  net/802/tr.c                                   |    8 +--
>  net/appletalk/sysctl_net_atalk.c               |   10 +--
>  net/ax25/af_ax25.c                             |    2 -
>  net/ax25/ax25_dev.c                            |   10 +--
>  net/ax25/sysctl_net_ax25.c                     |   82 ++++++++---------------
>  net/bridge/br_netfilter.c                      |   10 +--
>  net/core/neighbour.c                           |   35 ++--------
>  net/core/sysctl_net_core.c                     |   14 +----
>  net/dccp/sysctl.c                              |   11 +---
>  net/decnet/dn_dev.c                            |   21 ++-----
>  net/decnet/sysctl_net_decnet.c                 |   10 +--
>  net/ipv4/devinet.c                             |   39 ++----------
>  net/ipv4/ip_fragment.c                         |    4 +-
>  net/ipv4/netfilter.c                           |   10 ---
>  net/ipv4/netfilter/ip_queue.c                  |    6 +-
>  net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c |    2 +-
>  net/ipv4/route.c                               |   29 +--------
>  net/ipv4/sysctl_net_ipv4.c                     |   14 +---
>  net/ipv4/xfrm4_policy.c                        |    4 +-
>  net/ipv6/addrconf.c                            |   32 +--------
>  net/ipv6/af_inet6.c                            |   15 ----
>  net/ipv6/netfilter/ip6_queue.c                 |    6 +-
>  net/ipv6/netfilter/nf_conntrack_reasm.c        |    6 +-
>  net/ipv6/reassembly.c                          |    4 +-
>  net/ipv6/sysctl_net_ipv6.c                     |   83 +++++++-----------------
>  net/ipv6/xfrm6_policy.c                        |    4 +-
>  net/ipx/sysctl_net_ipx.c                       |   11 +--
>  net/irda/irsysctl.c                            |   10 +--
>  net/llc/sysctl_net_llc.c                       |   52 +++++----------
>  net/netfilter/core.c                           |    9 ---
>  net/netfilter/ipvs/ip_vs_ctl.c                 |   10 +---
>  net/netfilter/ipvs/ip_vs_lblc.c                |    3 +-
>  net/netfilter/ipvs/ip_vs_lblcr.c               |    3 +-
>  net/netfilter/nf_conntrack_acct.c              |    4 +-
>  net/netfilter/nf_conntrack_ecache.c            |    3 +-
>  net/netfilter/nf_conntrack_proto.c             |   10 ++--
>  net/netfilter/nf_conntrack_proto_dccp.c        |    4 +-
>  net/netfilter/nf_conntrack_standalone.c        |   14 +---
>  net/netfilter/nf_conntrack_timestamp.c         |    4 +-
>  net/netfilter/nf_log.c                         |    9 +--
>  net/netrom/sysctl_net_netrom.c                 |   10 +--
>  net/phonet/sysctl.c                            |   10 +--
>  net/rds/ib_sysctl.c                            |   11 +---
>  net/rds/iw_sysctl.c                            |   11 +---
>  net/rds/sysctl.c                               |   11 +---
>  net/rose/sysctl_net_rose.c                     |   10 +--
>  net/sctp/sysctl.c                              |   10 +--
>  net/socket.c                                   |    6 ++
>  net/sysctl_net.c                               |   45 ++++---------
>  net/unix/sysctl_net_unix.c                     |   10 +--
>  net/x25/sysctl_net_x25.c                       |   10 +--
>  net/xfrm/xfrm_sysctl.c                         |    2 +-
>  61 files changed, 209 insertions(+), 606 deletions(-)
> .
> 

--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists