Re: [RFC PATCH] audit: normalize NETFILTER_PKT

On Tue, 31 Jan 2017 07:57:23 -0500 Richard Guy Briggs wrote: > On 2017-01-30 10:13, Richard Guy Briggs wrote: > > On 2017-01-30 15:53, Steve Grubb wrote: > > > On Fri, 27 Jan 2017 08:11:06 -0500 > > > Richard Guy Briggs wrote: > > > > Eliminate flipping in

Re: net: suspicious RCU usage in nf_hook

On Mon, 2017-01-30 at 22:19 -0800, Cong Wang wrote: > > The context is process context (TX path before hitting qdisc), and > BH is not disabled, so in_interrupt() doesn't catch it. Hmm, this > makes me thinking maybe we really need to disable BH in this > case for nf_hook()? But it is called in

ANNOUNCE: Netdev 2.1 update

A few announcements: - We expect to open up registration and announce hotel and location next week. - We are pleased to announce the first netdev 2.1 talk has been accepted by the tech committee! The Call for Proposals is still open, submit early to avoid the hazards of last minute traffic.

[PATCH nf-next v2] netfilter: allow logging from non-init namespaces

Commit 69b34fb996b2 ("netfilter: xt_LOG: add net namespace support for xt_LOG") disabled logging packets using the LOG target from non-init namespaces. The motivation was to prevent containers from flooding kernel log of the host. The plan was to keep it that way until syslog namespace