On Thursday 30 August 2012 04:50:09 you wrote: > Not sure what you mean, you're still crashing with the patch below, > right? > > My proposal is to give a try to the ecache patch, that requires > removing the previous patch. Apologies for the confusion; the patch quoted is essentially the first patch you provided me, with my changes to make it work in 3.4.10 *plus* the deletion of the change to nf_conntrack_ecache.h where your patch deleted the nf_ct_is_dying() check (i.e I have this check left in) - with this modification, I find that conntrackd is well-behaved and I have thus far not successfully caused a kernel panic. Having tested your latest patch, I can also confirm that it also does not crash, including at exhaustion of the conntrack table. In terms of overall stability, I would presume your latest patch is superior to the previous (i.e. what I attached most recently) ? Kind Regards, Oliver -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
