Re: remove connections notification by conntrack?

[Pablo Neira Ayuso <pablo@netfilter.org>]

[-- Attachment #1: Type: text/plain, Size: 1491 bytes --]

Thomas Mader wrote:
> On Sunday 24 September 2006 05:10, Pablo Neira Ayuso wrote:
>> events & IPCT_DESTROY
>>
>>> 		printk("We have been notified that connection %d was deleted!\n",
>>> ct->id); }
>>>
>>> 	return 0;
>>> }
>>>
>>>
>>> static struct notifier_block ctnl_notifier = {
>>> 	.notifier_call = ipaddr_conntrack_event,
>>> };
>>>
>>>
>>> static int __init init(void)
>>> {
>>> 	int ret;
>>> 	need_conntrack();
>>> 	ret = ip_conntrack_register_notifier(&ctnl_notifier);
>>> 	if (ret < 0) {
>>> 		printk("ipaddr_init: cannot register notifier.\n");
>>> 		goto err_unreg_notifier;
>>> 	}
>>> 	//ip_conntrack_destroyed = destroyed_connect;
>>>
>>> 	printk(KERN_CRIT "init!\n");
>>>    	return ipt_register_match(&ipaddr_match);
>>>
>>> err_unreg_notifier:
>>> 		ip_conntrack_unregister_notifier(&ctnl_notifier);
>>> 		return 1;
>>> }
>>>
>>> But the problem remains the same. It works for TCP and I get properly
>>> notified about those but not about UDP.
>> Try with what I told you above and let me know if it works
> 
> No it doesn't. I tried "events & IPCT_DESTROY" already and it didn't work. Now 
> I tested it once again with same result.

Works fine here with the toy module attached:

Sep 24 17:30:52 Decadence kernel: protonum=17
Sep 24 17:31:26 Decadence last message repeated 2 times
Sep 24 17:31:47 Decadence kernel: protonum=6

-- 
The dawn of the fourth age of Linux firewalling is coming; a time of
great struggle and heroic deeds -- J.Kadlecsik got inspired by J.Morris

[-- Attachment #2: modulo.c --]
[-- Type: text/x-csrc, Size: 781 bytes --]

#include <linux/init.h>
#include <linux/module.h>
#include <linux/kernel.h>
#include <linux/netfilter.h>
#include <linux/netfilter_ipv4/ip_conntrack.h>

static int conntrack_event(struct notifier_block *this,
			   unsigned long events, 
			   void *ptr)
{
	struct ip_conntrack *ct = (struct ip_conntrack *)ptr;

	if (events & IPCT_DESTROY)
		printk("protonum=%d\n", ct->tuplehash[IP_CT_DIR_ORIGINAL].tuple.dst.protonum);

	return 0;
}

static struct notifier_block ctnl_notifier = { 
	.notifier_call = conntrack_event,
}; 

static int __init hello_init(void)
{
	int ret;

	need_conntrack();
	ret = ip_conntrack_register_notifier(&ctnl_notifier);
	if (ret < 0)
		printk("ipaddr_init: cannot register notifier.\n");

	return ret;
}

module_init(hello_init);

MODULE_LICENSE("GPL");