14 May
2013
14 May
'13
5:11 p.m.
On 05/14/2013 03:58 PM, Stefan Berger wrote:
Linux netfilter at some point (Linux 2.6.39) inverted the meaning of the '--ctdir reply' and newer netfilter implementations now expect '--ctdir original' instead and vice-versa. We check for the kernel version and assume that all Linux kernels with version 2.6.39 have the newer inverted logic.
BTW, can you add a comment to the commit log pointing out that any distro that backports the netfilter --ctdir "fix" to a pre-2.6.39 kernel will need to also carry a patch against libvirt that changes ebiptablesDriverProbeCtdir to detect their kernel version as being "corrected"?