[ovs-dev] [patch v3 0/3] conntrack: Alg improvements.

Darrell Ball dlu998 at gmail.com
Mon Dec 4 16:13:04 UTC 2017


Some refactoring of alg support is done.
Also allow for non-standard alg conntrol port specification.
Also algs are now disabled by default, unless an alg specifier
is supplied; this allows for enhanced security and matches
later kernels.

v2->v3: 1/ A bit more refactoring for patch 1.
        2/ Fix a bug in patch 3 and add an associated test to
           check that the control connection is still present even
           when a helper is not bound.
           
Darrell Ball (3):
  conntrack: Refactor algs.
  conntrack: Allow specified alg port numbers.
  conntrack: Disable algs by default.

 lib/conntrack.c         | 207 +++++++++++++++++++++++++++++++++---------------
 lib/conntrack.h         |   8 +-
 lib/dpif-netdev.c       |   4 +-
 tests/system-traffic.at |  21 +++++
 tests/test-conntrack.c  |   6 +-
 5 files changed, 175 insertions(+), 71 deletions(-)

-- 
1.9.1



More information about the dev mailing list