* [IPTABLES] [PATCH] fix ipt_conntrack leftover
@ 2005-04-08 8:42 Pablo Neira
2005-04-10 21:01 ` Harald Welte
0 siblings, 1 reply; 2+ messages in thread
From: Pablo Neira @ 2005-04-08 8:42 UTC (permalink / raw)
To: Netfilter Development Mailinglist
[-- Attachment #1: Type: text/plain, Size: 148 bytes --]
This patch is for iptables.
someone forgot to update ipt_conntrack.h header in user space. So,
update it to use ip_conntrack_old_tuple.
--
Pablo
[-- Attachment #2: x --]
[-- Type: text/plain, Size: 916 bytes --]
Index: include/linux/netfilter_ipv4/ipt_conntrack.h
===================================================================
--- include/linux/netfilter_ipv4/ipt_conntrack.h (revision 3827)
+++ include/linux/netfilter_ipv4/ipt_conntrack.h (working copy)
@@ -22,11 +22,32 @@
#define IPT_CONNTRACK_STATUS 0x40
#define IPT_CONNTRACK_EXPIRES 0x80
+/* This is exposed to userspace, so remains frozen in time. */
+struct ip_conntrack_old_tuple
+{
+ struct {
+ u_int32_t ip;
+ union {
+ u_int16_t all;
+ } u;
+ } src;
+
+ struct {
+ u_int32_t ip;
+ union {
+ u_int16_t all;
+ } u;
+
+ /* The protocol. */
+ u_int16_t protonum;
+ } dst;
+};
+
struct ipt_conntrack_info
{
unsigned int statemask, statusmask;
- struct ip_conntrack_tuple tuple[IP_CT_DIR_MAX];
+ struct ip_conntrack_old_tuple tuple[IP_CT_DIR_MAX];
struct in_addr sipmsk[IP_CT_DIR_MAX], dipmsk[IP_CT_DIR_MAX];
#ifdef KERNEL_64_USERSPACE_32
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2005-04-10 21:01 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-04-08 8:42 [IPTABLES] [PATCH] fix ipt_conntrack leftover Pablo Neira
2005-04-10 21:01 ` Harald Welte
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.