* [PATCH] conntrack-mms / keep hook private.
@ 2005-05-03 7:28 Pawel Sikora
2005-05-03 18:01 ` Patrick McHardy
0 siblings, 1 reply; 2+ messages in thread
From: Pawel Sikora @ 2005-05-03 7:28 UTC (permalink / raw)
To: Patrick McHardy, netfilter-devel
[-- Attachment #1: Type: text/plain, Size: 308 bytes --]
Hi All,
IMHO the hook should be a private part of a kernel
(similar to other conntrack modules).
Attached patch hide the mms hook from userland.
Regards,
Pawel.
--
The only thing necessary for the triumph of evil
is for good men to do nothing.
- Edmund Burke
[-- Attachment #2: mms-conntrack-keep_hook_private.patch --]
[-- Type: text/x-diff, Size: 677 bytes --]
Index: mms-conntrack-nat/linux-2.6.11/include/linux/netfilter_ipv4/ip_conntrack_mms.h
===================================================================
--- mms-conntrack-nat/linux-2.6.11/include/linux/netfilter_ipv4/ip_conntrack_mms.h (revision 3889)
+++ mms-conntrack-nat/linux-2.6.11/include/linux/netfilter_ipv4/ip_conntrack_mms.h (working copy)
@@ -30,9 +30,11 @@
};
struct ip_conntrack_expect;
+#ifdef __KERNEL__
extern unsigned int (*ip_nat_mms_hook)(struct sk_buff **pskb,
enum ip_conntrack_info ctinfo,
const struct ip_ct_mms_expect *exp_mms_info,
struct ip_conntrack_expect *exp);
+#endif
#endif /* _IP_CONNTRACK_MMS_H */
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [PATCH] conntrack-mms / keep hook private.
2005-05-03 7:28 [PATCH] conntrack-mms / keep hook private Pawel Sikora
@ 2005-05-03 18:01 ` Patrick McHardy
0 siblings, 0 replies; 2+ messages in thread
From: Patrick McHardy @ 2005-05-03 18:01 UTC (permalink / raw)
To: Pawel Sikora; +Cc: netfilter-devel
[-- Attachment #1: Type: text/plain, Size: 280 bytes --]
Pawel Sikora wrote:
> Hi All,
>
> IMHO the hook should be a private part of a kernel
> (similar to other conntrack modules).
> Attached patch hide the mms hook from userland.
I agree, but in fact nothing of the entire file should be
visible, so I've applied this patch instead.
[-- Attachment #2: x --]
[-- Type: text/plain, Size: 743 bytes --]
Index: linux-2.6.11/include/linux/netfilter_ipv4/ip_conntrack_mms.h
===================================================================
--- linux-2.6.11/include/linux/netfilter_ipv4/ip_conntrack_mms.h (Revision 3890)
+++ linux-2.6.11/include/linux/netfilter_ipv4/ip_conntrack_mms.h (Arbeitskopie)
@@ -15,7 +15,6 @@
#define MMS_SRV_CHUNKLENLV_OFFSET 16
#define MMS_SRV_CHUNKLENLM_OFFSET 32
#define MMS_SRV_MESSAGELENGTH_OFFSET 8
-#endif
/* This structure is per expected connection */
struct ip_ct_mms_expect {
@@ -34,5 +33,5 @@
enum ip_conntrack_info ctinfo,
const struct ip_ct_mms_expect *exp_mms_info,
struct ip_conntrack_expect *exp);
-
+#endif
#endif /* _IP_CONNTRACK_MMS_H */
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2005-05-03 18:01 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-05-03 7:28 [PATCH] conntrack-mms / keep hook private Pawel Sikora
2005-05-03 18:01 ` Patrick McHardy
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.