Re: [PATCH] extensions: libxt_bpf: fix missing __NR_bpf declaration

On Sun, Sep 10, 2017 at 10:44:53AM +0300, Rafael Buchbinder wrote: > This include is needed to compile the bpf_obj_get function properly, > as it brings in the __NR_bpf declaration. Applied, thanks. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a mess

Re: [PATCH] xtables-compat-restore: fix translation of mangle's OUTPUT

On Sun, Sep 10, 2017 at 08:35:23PM +0200, Louis Sautier wrote: > On 10/09/17 02:39, Louis Sautier wrote: > > Hello, > > I noticed that the iptables-restore-translate tool does not properly > > translate the OUTPUT chain from the mangle table. It creates a filter > > chain when it should be creating

Re: [PATCH] xtables-compat-restore: fix translation of mangle's OUTPUT

On 10/09/17 02:39, Louis Sautier wrote: > Hello, > I noticed that the iptables-restore-translate tool does not properly > translate the OUTPUT chain from the mangle table. It creates a filter > chain when it should be creating a route chain. > Here is a rather simple patch that should fix the issue

[RFC PATCH nft V2] src: Add import command for json

This new operation allows to import ruleset in json to make incremental changes using the parse functions of libnftnl. A basic way to test this new functionality is: % cat file.json | nft import json where the file.json is a ruleset exported in json format. Highly based on work from Alvaro Ne

[PATCH] netfilter: nat: Do not use ARRAY_SIZE() on spinlocks to fix zero div

If no spinlock debugging options (CONFIG_GENERIC_LOCKBREAK, CONFIG_DEBUG_SPINLOCK, CONFIG_DEBUG_LOCK_ALLOC) are enabled on a UP platform (e.g. m68k defconfig), arch_spinlock_t is an empty struct, hence using ARRAY_SIZE(nf_nat_locks) causes a division by zero: net/netfilter/nf_nat_core.c: In fu

[PATCH] extensions: libxt_bpf: fix missing __NR_bpf declaration

This include is needed to compile the bpf_obj_get function properly, as it brings in the __NR_bpf declaration. --- extensions/libxt_bpf.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/extensions/libxt_bpf.c b/extensions/libxt_bpf.c index 92c445e8..9510c190 100644 --- a/extensions/libxt_bpf

Re: [netfilter-core] Build failure with Linux 4.13+: ERROR: "__udivdi3" [net/netfilter/xt_hashlimit.ko] undefined!

Dear Pablo, On 2017-09-09 21:22, Pablo Neira Ayuso wrote: On Sat, Sep 09, 2017 at 10:37:25AM +0200, Paul Menzel wrote: Building the latest master branch from Linus, commit 0e271fd59fe9 (Merge tag 'platform-drivers-x86-v4.14-1' of git://git.infradead.org/linux-platform-drivers-x86) fails with