Hi Eric, On Tue, May 01, 2012 at 11:47:45AM -0700, Eric W. Biederman wrote: > Gao feng <gaofeng@xxxxxxxxxxxxxx> writes: > > > Currently the sysctl of netfilter proto is not isolated, so when > > changing proto's sysctl in container will cause the host's sysctl > > be changed too. it's not expected. > > > > This patch set adds the namespace support for netfilter protos. > > > > impletement four pernet_operations to register sysctl and initial > > pernet data for proto. > > > > -ipv4_net_ops is used to register tcp4(compat), > > udp4(compat),icmp(compat),ipv4(compat). > > -ipv6_net_ops is used to register tcp6,udp6 and icmpv6. > > -sctp_net_ops is used to register sctp4(compat) and sctp6. > > -udplite_net_ops is used to register udplite4 and udplite6 > > > > extern l[3,4]proto (sysctl) register functions to make them support > > namespace. > > > > finailly add namespace support for cttimeout. > > I am a bit out of it this week so I could not look at these patches > in the detail that I would like. However skimming through it looks > like you addressed your review comments, and the changes look like > the kind of changes I would expect from something like this. > > I assume you have tested to make certain your code actually works. > > So on that basis for the patchset: > Acked-by: "Eric W. Biederman" <ebiederm@xxxxxxxxxxxx> > > Anyone else want to chime in or does everyone else figure > that this code is ready to be merged and no additional comments > are necessary? I also want to see this code in this round of net-next. Yet, I'd like to have it a closer look to the patches. Please, be patient. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
