On 06/06/11 04:10, "Oleg A. Arkhangelsky" wrote: > Hello, > > 06.06.2011, 04:11, pablo@xxxxxxxxxxxxx: > >> With this patch, we can also fix wrong return values (-NF_ACCEPT) >> for special cases in ICMP[v6] that should not bump the invalid/error >> statistic counters. > > Are you sure? Please, look here: > > http://www.spinics.net/lists/netfilter-devel/msg15520.html We now check if we have one skb->nfct after l4proto->error(), so that affirmation doesn't apply anymore. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
