On Mon, May 14, 2012 at 04:52:10PM +0800, Gao feng wrote: > Currently the sysctl of netfilter proto is not isolated, so when > changing proto's sysctl in container will cause the host's sysctl > be changed too. it's not expected. > > This patch set adds the namespace support for netfilter protos. > > impletement four pernet_operations to register sysctl and initial > pernet data for proto. > > -ipv4_net_ops is used to register tcp4(compat), > udp4(compat),icmp(compat),ipv4(compat). > -ipv6_net_ops is used to register tcp6,udp6 and icmpv6. > -sctp_net_ops is used to register sctp4(compat) and sctp6. > -udplite_net_ops is used to register udplite4 and udplite6 > > extern l[3,4]proto (sysctl) register functions to make them support > namespace. > > finailly add namespace support for cttimeout. This requires another spin. It looks way better than previous version but I don't want to take the patchset and then send another batch to David to remove the .compat field, the unrequired export of couple of symbols, and so on... Thanks! -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
