Mr Dash Four <mr.dash.four@xxxxxxxxxxxxxx> wrote: > >True. The bug is that classifiers run with skb->data pointing to the L2 header, > >but netfilter starts with skb->data pointing to L3 header. > > > >Please, consider re-testing with this patchlet: > Will do that straight away and recompile tc. In case it wasn't clear: the patch is for the kernel part; no need to rebuild tc. > >>ipset n h_test-hosts hash:ip,port family inet timeout 0 hashsize 64 > >>ipset a h_test-hosts 10.1.1.7,tcp:22 > >> > >>tc filter add dev ifb0 protocol ip parent f:0 prio 21\ > >>basic match ipset'(h_test-hosts src,src)'\ > >>flowid f:33 > > > >Haven't tried this, but anything trying to access > >transport headers won't work due to bug above. > Should I assume that by applying your patchlet I could test the > above bugs again or should I wait? Please let me know. Please consider re-testing. Once you find the first testcase in your list that still doesn't work, please let me know which one it is and i'll have a look at it. -- To unsubscribe from this list: send the line "unsubscribe lartc" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
