From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> Date: Mon, 28 Jan 2019 15:03:58 +0100 > The following patchset contains Netfilter/IPVS fixes for your net tree: > > 1) The nftnl mutex is now per-netns, therefore use reference counter > for matches and targets to deal with concurrent updates from netns. > Moreover, place extensions in a pernet list. Patches from Florian Westphal. > > 2) Bail out with EINVAL in case of negative timeouts via setsockopt() > through ip_vs_set_timeout(), from ZhangXiaoxu. > > 3) Spurious EINVAL on ebtables 32bit binary with 64bit kernel, also > from Florian. > > 4) Reset TCP option header parser in case of fingerprint mismatch, > otherwise follow up overlapping fingerprint definitions including > TCP options do not work, from Fernando Fernandez Mancera. > > 5) Compilation warning in ipt_CLUSTER with CONFIG_PROC_FS unset. > From Anders Roxell. > > You can pull these changes from: > > git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf.git Pulled, thanks Pablo.
