Received: by 10.213.65.68 with SMTP id h4csp193598imn; Mon, 12 Mar 2018 10:50:55 -0700 (PDT) X-Google-Smtp-Source: AG47ELt2N1QLwfprXBAEEc79B/EauDPTGh30rvVdFnZ5HnBjhHKjWKADbO8MemK4mFHMkGv7XG2P X-Received: by 10.98.8.219 with SMTP id 88mr8860072pfi.4.1520877055000; Mon, 12 Mar 2018 10:50:55 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1520877054; cv=none; d=google.com; s=arc-20160816; b=gpwI/6W29q07wuXWiU5STh9ksht0WD5zoU6/aYeMVATQguh8yifXu6ZdZYfAZQZZn9 CdZ76C49nZ8OHpBrB4tcWCGF/NVSE5y9mLIZzQll8vv077lhMNOoC7wvEjhSHOs1+aRK aTkP0yAmSuOOEQETJiFgWc8a137AtlFpuqhX0wB+qNGtBjmmb1k/j5mKu/XcyGNITDc+ aLKjCXXhUmli+s57HMEEZTi8eDSbYsnocztfTXvYXkaDr/lrjziKkHc+UtxefPyr71UH LKS2mW6HQ2bCanq8TFy0jkKjYBivRT1oqNoyzq0sgMNX3hpc/cNmklAQ2CYrKocmYZsY SaVg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:spamdiagnosticmetadata :spamdiagnosticoutput:content-transfer-encoding:in-reply-to :mime-version:user-agent:date:message-id:from:cc:references:to :subject:dkim-signature:dkim-signature:arc-authentication-results; bh=FxSNZOiw/CA+Uv9QSixHXZWziT6nKJg7wud8AUMlcTg=; b=uW75GCzwYswmbgInPP1QPJ+DVlwxF4erUoxOjph6PfSQPVIIMW/PL4BLRfKOMpFp8a J1Lypt3NIZZOw5WXA4NjB1LRVjRu5DGuAaT0DVq/VaIYO0ze1ycTVGVGXcxglB58ziFh +l/t3mZKcBg+XIxCHQ1KYHTM5t8Wm3MBYa8TjOTw3kEQ8puhoedji2OFrfaMo9A3qR8i 3CO3wqeF0C0jh7a3gDLCaKQDcbEzqaVOBTWZvXW186ToqKyDORLGqsnHGmvuhrlyppz5 ewEnSlrmm75r93hjxdzMYnl3A/b8/dCUsE6CWVujfEGc+2Nlrq9EqxpW0XQzbk/WEdgV swWQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@fb.com header.s=facebook header.b=VE0iNG8W; dkim=fail header.i=@fb.onmicrosoft.com header.s=selector1-fb-com header.b=dTgh+Wh5; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=fb.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id j15-v6si6529919pli.649.2018.03.12.10.50.39; Mon, 12 Mar 2018 10:50:54 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@fb.com header.s=facebook header.b=VE0iNG8W; dkim=fail header.i=@fb.onmicrosoft.com header.s=selector1-fb-com header.b=dTgh+Wh5; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=fb.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S932668AbeCLRto (ORCPT + 99 others); Mon, 12 Mar 2018 13:49:44 -0400 Received: from mx0b-00082601.pphosted.com ([67.231.153.30]:46700 "EHLO mx0a-00082601.pphosted.com" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S932231AbeCLRtk (ORCPT ); Mon, 12 Mar 2018 13:49:40 -0400 Received: from pps.filterd (m0001255.ppops.net [127.0.0.1]) by mx0b-00082601.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w2CHlNnh022939; Mon, 12 Mar 2018 10:49:13 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fb.com; h=subject : to : references : cc : from : message-id : date : mime-version : in-reply-to : content-type : content-transfer-encoding; s=facebook; bh=FxSNZOiw/CA+Uv9QSixHXZWziT6nKJg7wud8AUMlcTg=; b=VE0iNG8WyLsSXOerhPSDFOulKmMSwkyRKHM/NuIvPdNTpyFJjvLK61IEw3H8/VYl7don mIGAeulQvDJaERbFxWpCNEejtBsfe7eHf0fd3jKTiXaW5Qo3CYtzahgUB2JD9xXStXbs biLYaks5cXDoX4KT6BMBh52+SocZ8/VBcic= Received: from mail.thefacebook.com ([199.201.64.23]) by mx0b-00082601.pphosted.com with ESMTP id 2gnua9gms5-1 (version=TLSv1 cipher=ECDHE-RSA-AES256-SHA bits=256 verify=NOT); Mon, 12 Mar 2018 10:49:13 -0700 Received: from NAM02-CY1-obe.outbound.protection.outlook.com (192.168.54.28) by o365-in.thefacebook.com (192.168.16.19) with Microsoft SMTP Server (TLS) id 14.3.361.1; Mon, 12 Mar 2018 10:49:11 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fb.onmicrosoft.com; s=selector1-fb-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=FxSNZOiw/CA+Uv9QSixHXZWziT6nKJg7wud8AUMlcTg=; b=dTgh+Wh54b+goxzbeowClaGXZKiu7sLLG2V7sD2CK2RQMcOzn76BQP3a5NzuzT9mlNPEYIOxXkBH+fdajsqoIuXl0b/tXf97adWVbdchA2WD9Hjha/ZHXAZaBAEUqqSLEGjC2WZ4csIbYEeykoZXNn+YduQjdtM2BIKBLwy8Dw0= Received: from [IPv6:2620:10d:c081:1131::1375] (2620:10d:c090:180::1:e6ca) by BN7PR15MB2498.namprd15.prod.outlook.com (2603:10b6:406:86::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.548.13; Mon, 12 Mar 2018 17:49:07 +0000 Subject: Re: [PATCH net-next] modules: allow modprobe load regular elf binaries To: Edward Cree , Linus Torvalds , Kees Cook References: <87478c51-59a7-f6ac-1fb2-f3ca2dcf658b@fb.com> <20180309.133509.1275903267249306409.davem@davemloft.net> <77cdc9f5-b51c-a18d-5422-763cc4e76279@fb.com> <30db1e8e-8eb4-5072-8360-6cafe26db113@solarflare.com> CC: David Miller , Andy Lutomirski , Alexei Starovoitov , Djalal Harouni , Al Viro , Daniel Borkmann , Greg KH , "Luis R. Rodriguez" , Network Development , LKML , kernel-team , Linux API From: Alexei Starovoitov Message-ID: <46e60759-e095-cb3c-4505-e5632916cd55@fb.com> Date: Mon, 12 Mar 2018 10:49:02 -0700 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:45.0) Gecko/20100101 Thunderbird/45.8.0 MIME-Version: 1.0 In-Reply-To: <30db1e8e-8eb4-5072-8360-6cafe26db113@solarflare.com> Content-Type: text/plain; charset="utf-8"; format=flowed Content-Transfer-Encoding: 7bit X-Originating-IP: [2620:10d:c090:180::1:e6ca] X-ClientProxiedBy: CY4PR06CA0027.namprd06.prod.outlook.com (2603:10b6:903:77::13) To BN7PR15MB2498.namprd15.prod.outlook.com (2603:10b6:406:86::32) X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 95a46a5f-a807-4bf8-3c0b-08d588418f02 X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:(7020095)(4652020)(5600026)(4604075)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(7193020);SRVR:BN7PR15MB2498; X-Microsoft-Exchange-Diagnostics: 1;BN7PR15MB2498;3:+BNOSHs3WuNMORN+JPkXu3OlccDurvPZE2yybyVcPKAjzIJzsfBAbOoP9k1H1xAeXkigOb7r9BNgXHzkugSsInMca6fk5QL8X4+iwI0RQq6ogS3usx4f5FVq2oSl+axUXgxZpdYe3G/ujB2OS3tcBUiRJ8VM5uuueHqVZS9s4+WGMhjvH3GMwtuzI94Qle8wOmKuTn1N5mH1zF5dRK9OP3CiAK89hgl52zU1uVuO+OoSKNcmip03lIc6Qkqz3o9T;25:A1BokHG6nz86Zpa8KpjmYS3OuRqQVkQa+3W9wDhx3ylNkk8iWzxvckbUFyJ/208z+MhcCJTtfw1tYjeeOPSevvrhsA26aUzB+v8bj4zIZKXtx2UCRo80BGIbvMycbG7Yu/ikgbmabTHzbv6U/mmsVhtIkVeD7U7l2c1kY9tJlt55DnsUM2VE0xgAisEp9nZGoFxjONH0oMxXIKRuydUO9LSkjsHNI/ZqS7AA7xQpUrZa4ZWpcW0va5t8bnxAuWn+HoA10q3ThZ3mFmMra9063R9Rqr6WB6opJT+NqoWyWcfItE5eVC7wQ5gpslRyO7JTStFdIIUbNhZFVgCNFv3X9w==;31:K3Wry2uiBi4rXefYQxCLcRyd3W82Iyh09RdByF5BP5IpCdnzKEYpv5IWIv9mRahUbBQNrnVEfKqa2r/gDGZYVTbDub8euuFoBTbXgat2n81zonbS9k/xex/nwH/tbFpD1zrqsp+XWDOUqhxJ4wXesLZt2KuuI0wF5qQLIfnRACY4wGxZGWb1GexVkI6HUMFBkKEh8jTR9IYFiDVs3mLwnd1aTcq4H13Na878Bf4JJwY= X-MS-TrafficTypeDiagnostic: BN7PR15MB2498: X-Microsoft-Exchange-Diagnostics: 1;BN7PR15MB2498;20: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;4:GXl8q5Gk4hnX3r+mxOLfooPcTO46IEtwUen3UxUJzrM/meSMSJPnxg1JD3fHqz/kX6DefWgHz6rE6v+64Vn61PPrLtYhwj5IhYB09s08mm2kmtNEUqRuJvmDSxs83UpP4sIM7kvf54N/R+fRYEIZkWjULvJUOFjOQHM+PJLBHydYV4VetLtKsJxAScO/6t/lVQnfQZ8EhgV8xUFlUU/DjW5cLe35rdr3u00I0pK+dQ/cN2degyx7iX5SF0z0ESMZNnDO+Y9U2MAs05ZpVIlOrQ== X-Microsoft-Antispam-PRVS: X-Exchange-Antispam-Report-Test: UriScan:; X-Exchange-Antispam-Report-CFA-Test: BCL:0;PCL:0;RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(3002001)(93006095)(93001095)(10201501046)(3231220)(11241501184)(944501244)(52105095)(6041310)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123562045)(20161123558120)(6072148)(201708071742011);SRVR:BN7PR15MB2498;BCL:0;PCL:0;RULEID:;SRVR:BN7PR15MB2498; X-Forefront-PRVS: 06098A2863 X-Forefront-Antispam-Report: SFV:NSPM;SFS:(10019020)(39860400002)(376002)(396003)(39380400002)(346002)(366004)(189003)(199004)(93886005)(64126003)(230700001)(305945005)(7736002)(59450400001)(67846002)(36756003)(6116002)(46003)(386003)(53546011)(105586002)(47776003)(65956001)(65806001)(16526019)(186003)(54906003)(5660300001)(86362001)(1706002)(229853002)(316002)(39060400002)(25786009)(31696002)(4326008)(106356001)(68736007)(31686004)(65826007)(6246003)(53936002)(50466002)(2906002)(23676004)(52146003)(2486003)(52116002)(6486002)(8936002)(478600001)(8676002)(81166006)(81156014)(76176011)(97736004)(52396003)(6666003)(2950100002)(58126008)(7416002)(110136005)(42262002);DIR:OUT;SFP:1102;SCL:1;SRVR:BN7PR15MB2498;H:[IPv6:2620:10d:c081:1131::1375];FPR:;SPF:None;PTR:InfoNoRecords;MX:1;A:1;LANG:en; Received-SPF: None (protection.outlook.com: fb.com does not designate permitted sender hosts) X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtCTjdQUjE1TUIyNDk4OzIzOlNtU2wrSVR5TFJXbDF5WXA3alcvd0JpY2t5?= =?utf-8?B?SmMxcUtaUHdhWXlLLzF1VXNBYVVFQVhsRTNhSGgxR0g2VmxJcjY5U0loSmpS?= =?utf-8?B?UkV6U3NEakZQSGhxcFp0bzFGcW1ueXdFc0VxTkFxWEhGbXVTTTZNMXZ4ZlZI?= =?utf-8?B?QWF3VDBiZlhucFg3MklyM0RvS3FLN2k0aXRxOXZuZkVheFRDV0E3R1NCMlNp?= =?utf-8?B?RzdWUkVUSzh1TmZoRlVhUFczZXBXYk9oK3g3K1RQblYxaVowRTNCVVBIdFZ2?= =?utf-8?B?azYzYU5sNDl1U1JLOGw2andvRUU2ZFhXYnRwbFBWMzJDWUNFU25qRWpXeFRE?= =?utf-8?B?QkpCd3N4RWhqWTYydU04TDU5bEJLUjlidTRxVDNlQ3pGUFY1T0JveFl0S2tq?= =?utf-8?B?SHpxKzhsdEljWVVqaTJTTXhiWWJmd25vU3ozSUdlOVFMdmVFZVFlNWNVYkZx?= =?utf-8?B?Zy9KN3Q4KzYxT3h1ZWtYMHlLM0ZrRUFqOFBsUnNlM0lnZ0lQK2JvSDBKbEFS?= =?utf-8?B?a1dvb29HRHp4b1JyeUVGRTJ0dzRPSVZ1MXdJVVBQUVlQY1l3NnlrNkFING1V?= =?utf-8?B?SlJpYXg2bThaVk9RUStuc0VWMEZaKzdoMXBHRCtUU2FhbmtiQlVFYTRyYTNu?= =?utf-8?B?dDc0NndZUGNmdTB2anUzQ3RRYWZCZ213NllBWWdJTURkQjkzUEVIdyszdmZa?= =?utf-8?B?dWNsV0MrUUd3QzhucVJhb2R0cWZYTGZ1VG50TlExUjJsNEdoNWFueElSSWcv?= =?utf-8?B?anhiL1lWSFRic1BJVHpjTGt5V0Y5NkdKelN3N1ZOMEh2dDkxblRYU3NxS21N?= =?utf-8?B?V0U5SUgxVzRxSGZxaHBOSGhwVlR4bndQRmR4SkZJNXNNajRNYWFLZFBNOExo?= =?utf-8?B?MklnQmJHdEl2QUhNOGN4WjYvSFJnSUNRYTROOElHTllkMk5FZVRsdUYvV3Fo?= =?utf-8?B?NFFVcXNnbStLWGtUTUN6U0NyWHdIUXpCdmNJb1V5dXptNGd6RWFaaTkzWTY3?= =?utf-8?B?Mm1sNjJxZHcxMU9vRG9jY1hmMkNQZkFiRHpGRXByay83M2xHYkpxUFMzT3V5?= =?utf-8?B?OHZzNDVLOFcvOFJvMDdtSGRxRnJteUIwSGh3UFp6ZEVYVGdGb2JGclpjTi9V?= =?utf-8?B?ck5icC8vSGpHbG9DT05tTncwQzU2dGlMeVZvRHdiRGJ5MVlmRS9TbllVVHFI?= =?utf-8?B?ZG1GeFI4WlhEQjBma2lDWVRySmFiVmp1Qk40bjR0aDRhWlRvYTlCTzhhaGpr?= =?utf-8?B?ckg4OFFETGlJRWVEaVFuNmY0ZEVldFpBYnYwaDY0ZUZXelFBYXhHUllnVk01?= =?utf-8?B?Wm1EQWZoUEVXeFN1RUhUM2dtdWd4WDJMS2ZXSy93VGFDN3VoaGVkemJpUjRL?= =?utf-8?B?MFlhNm1WaDJXZmdsMCtPSEhjd0dBNGg2OUc4MkpHWGsyb1g4QjNlcDhCeWti?= =?utf-8?B?aVNYWEZORUtmKzY0akpMTS92cXkrbHFhL0oyTHFCUVNCWUw3RnYzZmNwSEJl?= =?utf-8?B?U0lqdFV0U25uVFVNd2txeEI4T29NTTR4bDdNcmlWV29PVGhNSUd1MVZaT1pl?= =?utf-8?B?dmxlOVFqM1d4bi9sZXdBdUtqV1hWeTY2ZWZFUGxmUEEvYXFLZVhwRkVmbHFv?= =?utf-8?B?eEJHWkxEUS92RHdCbXFMZDNSUzF2WmpuR28wcG0rWlZ4dmhSNGh6OTF1ZVlp?= =?utf-8?B?aGZKdFRkKzRXczFCNjZzY1RQbUhsR3BvbDJES2FuV2VTV2hyN21QZHVaSUdC?= =?utf-8?B?R0RpWmo1VTJRajc3MjFQNWU3cUZrbGlIUUcxb2Y4Y0JrY1ZJNEw4SWkwNnBN?= =?utf-8?B?eHFpK1dENXpRM2xhVlFFU3JkcnpHZjhEMVF1RDk1RTdIY1pETmxVWVoxZUY3?= =?utf-8?B?cHhmM0laYnBrWVVCb0ZGcnBXUDVkM3lmV3VLTzdNMnRHcWxWVS9DUUZlVHB2?= =?utf-8?Q?JoLSmu8GszcOTYH3hhm3fCTdVf1hBk=3D?= X-Microsoft-Antispam-Message-Info: 7X5nGQdPo0HMaRLFdg7f4MdZBfpKKYhMsnqb1KXe6zBcEMqdFiE2cs+Wv08efLwJqoxbTOkybAWvk+UhzuCHd19DT4FwcevXOaz30fw5s1/ctQ+bjtpijQp7CU4SthEKswS5L5qdXjwhv7AcBeNTMU/bmkfIOd7noj2qbwWPJMmUOODOcuHGYhSq45Kv9mSm X-Microsoft-Exchange-Diagnostics: 1;BN7PR15MB2498;6:Sc5esmUDzMPgvtQnbgJxeKp5yPnL9c+v6q6Hoj4i9T9zSlEsdqr8CXKvc1vKAB/uBSV8sIRcQI0NLutnkc5uklewrhxlsQNFTt+JPDLHusWRPdE8bNX7oeFor5GQBbC6b42cxix8FSOmam3UFKDmWRrBSCoeRdn5y1a8Pr53+ir4GaLnXktjaDTNneDUuxxxhdUsK8edcNzgX4o9cHz4AwLvFhnrxIr9lzo+JfEoziC/PQGIUv863g6IR7M/WgTwgsMr3oz1Ii30aI8yJ6xtKb86sqXk12+2ix6N8JLYND/jQCkTvaaMeWVtZzLfQyqTBOAz9mEizviCRTluh5ap96Wdkp/qr7ID4qPRg8URHSs=;5:pGwgNtAtwdh3VAtuRQLBqUVGNxd2GUorC6zcrHF50FfLZKFUhH5LcPhGDxE1cC/MWWex6xCSTqptv8z8JFxAESu2WZ+hkn1tdTifctaHa+I0xsSRabgWvl9AHnj8X0jctZkVguKJ8LzOakZ3eKNAit7ap2qR6UIlx2qHizhVNT4=;24:dliPOhakF2vWjJWLahUzWAgwcOCYBsDFXMY5Nn6CyMzO6KueHY91cEccRaLWt1e7CWaWf4m3SytzYJ9n3GkMwS912SZzb3mkscTs9tBsnNM=;7:xpvdHts5z0F5VDPhOt94TT+U9arp4sueog6bi9YLcW0NOURhH9hqrFBjw59V9wtcvYtI6AddNTraYkRw5erV5p801hNmKd3mJFEqaT3G3vU6twhRcbazWRicM7YQO95DQEXJq79DRK6jWuXMspcHQY8KL+QRCuSGyAdh5kCqB7VOovmOSdGexuXYv3ncau38VUaErUpHnOEq2DrfVWWgYDgwkUR3XnB0u16fDILpgUSOeIGFHINh5X+yKADtyYny SpamDiagnosticOutput: 1:99 SpamDiagnosticMetadata: NSPM X-Microsoft-Exchange-Diagnostics: 1;BN7PR15MB2498;20:c3CWzojOH31L6W2GeeEG8vIAwItDuRYq8m0c/v/vpdBZW2jhFDpGkoVkR6S7WalKJWvCYD+JmVdgA/QKftRjPnttBqPijODjAXTwFKWKA9lHKtpPcktkvY3SVGtyuatYWiEKuvGPnW5uwwjJExZZbVL3ZYZMqDEDudxubznhYBM= X-MS-Exchange-CrossTenant-OriginalArrivalTime: 12 Mar 2018 17:49:07.2739 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: 95a46a5f-a807-4bf8-3c0b-08d588418f02 X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 8ae927fe-1255-47a7-a2af-5f3a069daaa2 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN7PR15MB2498 X-OriginatorOrg: fb.com X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:,, definitions=2018-03-12_09:,, signatures=0 X-Proofpoint-Spam-Reason: safe X-FB-Internal: Safe Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 3/12/18 5:02 AM, Edward Cree wrote: > On 09/03/18 18:58, Alexei Starovoitov wrote: >> It's not waiting for the whole thing, because once bpfilter starts it >> stays running/sleeping because it's stateful. > So, this has been bugging me a bit. > If bpfilter takes a signal and crashes, all that state goes away. > Does that mean your iptables/netfilter config just got forgotten and next > time you run iptables it disappears, so you have to re-apply it all again? >> It needs normal >> malloc-ed memory to keep the state of iptable->bpf translation that >> it will use later during subsequent translation calls. >> Theoretically it can use bpf maps pinned in kernel memory to keep >> this state, but then it's non-swappable. It's better to keep bpfilter >> state in its own user memory. > Perhaps the state should live in swappable kernel memory (e.g. a tmpfs > thing, which bpfilter could access through a mount). It'd be read-only > to userspace, listing the existing rules (in untranslated form), and be > updated to reflect the new rule after bpfilter has supplied the updated > translation. > Then bpfilter can cache things if it wants, but the kernel remains the > ultimate arbiter of the state and maintains it over a bpfilter crash. seems like overkill. I consider crashing bpfilter same severity as kernel bug. Whatever firewall rules already installed will continue to work, but new ones won't be able to load and current set cannot be queried. Control plane crashed, dataplane continues to work. Still a ton better than whole system crash. We have plenty of work ahead of us without worrying about restarting that umh and reloading its state from tmpfs. Something to consider for later phases of the project.