2016-08-12 19:49 GMT+08:00 Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>: > On Fri, Aug 12, 2016 at 07:12:32PM +0800, Liping Zhang wrote: >> 2016-08-12 18:34 GMT+08:00 Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>: > [...] >> > >> > I think it is a good time to kill compat /proc/net/ip_conntrack*. That >> > has been there for so long already. So we can inline this function, >> > this is the only one that needs it to export it, right? >> >> If just for the purpose of using nf_conntrack_get_ht to simply the source code, >> I'm not sure is it worth to delete the compat /proc/net/ip_conntrack*? >> >> So I'm inclined to keep the original source codes unchanged :) > > Just sent a patch to kill that compat code. It is also missing new > supported layer 4 protocols, as well as IPv6. We have too many > interfaces already, actually I'd be happy to kill nf_conntrack sysctl > entries at some point and leave just the ctnetlink interface. > > I'm attaching an incomplete patch that moves nf_conntrack_get_ht() as > inline. It applies on top of: > > http://patchwork.ozlabs.org/patch/658620/ > > Feel free to take it over and finish it. Thanks. OK. Will be happy to follow up on this:) Thanks. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
