From: Hans Schillstrom <hans@schillstrom.com>
To: Pablo Neira Ayuso <pablo@netfilter.org>
Cc: Hans Schillstrom <hans.schillstrom@ericsson.com>,
kaber@trash.net, jengelh@medozas.de,
netfilter-devel@vger.kernel.org, netdev@vger.kernel.org
Subject: Re: [v5 PATCH 1/3] NETFILTER added flags to __ipv6_find_hdr()
Date: Wed, 4 Jan 2012 21:48:11 +0100 [thread overview]
Message-ID: <201201042148.11614.hans@schillstrom.com> (raw)
In-Reply-To: <20120104173741.GA3524@1984>
On Wednesday, January 04, 2012 18:37:41 Pablo Neira Ayuso wrote:
> On Mon, Jan 02, 2012 at 04:06:39PM +0100, Hans Schillstrom wrote:
> > Two new flags to __ipv6_find_hdr,
> > One that tells us that this is a fragemnt.
> > One that stops at AH if any i.e. treat it like a transport header.
> > i.e. make handling of ESP and AH the same.
> >
> > Signed-off-by: Hans Schillstrom <hans.schillstrom@ericsson.com>
> > ---
> > include/linux/netfilter_ipv6/ip6_tables.h | 16 ++++++++++++++--
> > net/ipv6/netfilter/ip6_tables.c | 19 ++++++++++++++-----
> > 2 files changed, 28 insertions(+), 7 deletions(-)
> >
> > diff --git a/include/linux/netfilter_ipv6/ip6_tables.h b/include/linux/netfilter_ipv6/ip6_tables.h
> > index f549adc..ee0c68e 100644
> > --- a/include/linux/netfilter_ipv6/ip6_tables.h
> > +++ b/include/linux/netfilter_ipv6/ip6_tables.h
> > @@ -288,9 +288,21 @@ extern unsigned int ip6t_do_table(struct sk_buff *skb,
> >
> > /* Check for an extension */
> > extern int ip6t_ext_hdr(u8 nexthdr);
> > +enum {
> > + IP6T_FH_FRAG,
> > + IP6T_FH_AUTH,
> > + IP6T_FH_F_FRAG = 1 << IP6T_FH_FRAG,
> > + IP6T_FH_F_AUTH = 1 << IP6T_FH_AUTH,
> > +};
> > /* find specified header and get offset to it */
> > -extern int ipv6_find_hdr(const struct sk_buff *skb, unsigned int *offset,
> > - int target, unsigned short *fragoff);
> > +extern int __ipv6_find_hdr(const struct sk_buff *skb, unsigned int *offset,
> > + int target, unsigned short *fragoff, int *fragflg);
>
> Please, don't do this.
>
> the convention in the kernel is to use __function for non-locked
> versions of one function.
>
> The number of clients for this function seems small. I'll be very
> happy if you send me a patch that changes this interface and that
> propagates the changes to other clients of it.
>
No problem, I'll fix this.
I have some minor compilation warnings with out nat to fix also in the other patch.
Thanks
Hans
next prev parent reply other threads:[~2012-01-04 20:48 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-01-02 15:06 [v5 PATCH 0/3] NETFILTER new target module, HMARK Hans Schillstrom
2012-01-02 15:06 ` [v5 PATCH 1/3] NETFILTER added flags to __ipv6_find_hdr() Hans Schillstrom
2012-01-04 17:37 ` Pablo Neira Ayuso
2012-01-04 20:48 ` Hans Schillstrom [this message]
2012-01-02 15:06 ` [v5 PATCH 2/3] NETFILTER module xt_hmark, new target for HASH based fwmark Hans Schillstrom
2012-01-02 15:06 ` [v5 PATCH 3/3] NETFILTER userspace part for target HMARK Hans Schillstrom
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=201201042148.11614.hans@schillstrom.com \
--to=hans@schillstrom.com \
--cc=hans.schillstrom@ericsson.com \
--cc=jengelh@medozas.de \
--cc=kaber@trash.net \
--cc=netdev@vger.kernel.org \
--cc=netfilter-devel@vger.kernel.org \
--cc=pablo@netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.