From: Hans Schillstrom <hans@schillstrom.com>
To: Pablo Neira Ayuso <pablo@netfilter.org>
Cc: Hans Schillstrom <hans.schillstrom@ericsson.com>,
kaber@trash.net, jengelh@medozas.de,
netfilter-devel@vger.kernel.org, netdev@vger.kernel.org
Subject: Re: [v5 PATCH 1/3] NETFILTER added flags to __ipv6_find_hdr()
Date: Wed, 4 Jan 2012 21:48:11 +0100 [thread overview]
Message-ID: <201201042148.11614.hans@schillstrom.com> (raw)
In-Reply-To: <20120104173741.GA3524@1984>
On Wednesday, January 04, 2012 18:37:41 Pablo Neira Ayuso wrote:
> On Mon, Jan 02, 2012 at 04:06:39PM +0100, Hans Schillstrom wrote:
> > Two new flags to __ipv6_find_hdr,
> > One that tells us that this is a fragemnt.
> > One that stops at AH if any i.e. treat it like a transport header.
> > i.e. make handling of ESP and AH the same.
> >
> > Signed-off-by: Hans Schillstrom <hans.schillstrom@ericsson.com>
> > ---
> > include/linux/netfilter_ipv6/ip6_tables.h | 16 ++++++++++++++--
> > net/ipv6/netfilter/ip6_tables.c | 19 ++++++++++++++-----
> > 2 files changed, 28 insertions(+), 7 deletions(-)
> >
> > diff --git a/include/linux/netfilter_ipv6/ip6_tables.h b/include/linux/netfilter_ipv6/ip6_tables.h
> > index f549adc..ee0c68e 100644
> > --- a/include/linux/netfilter_ipv6/ip6_tables.h
> > +++ b/include/linux/netfilter_ipv6/ip6_tables.h
> > @@ -288,9 +288,21 @@ extern unsigned int ip6t_do_table(struct sk_buff *skb,
> >
> > /* Check for an extension */
> > extern int ip6t_ext_hdr(u8 nexthdr);
> > +enum {
> > + IP6T_FH_FRAG,
> > + IP6T_FH_AUTH,
> > + IP6T_FH_F_FRAG = 1 << IP6T_FH_FRAG,
> > + IP6T_FH_F_AUTH = 1 << IP6T_FH_AUTH,
> > +};
> > /* find specified header and get offset to it */
> > -extern int ipv6_find_hdr(const struct sk_buff *skb, unsigned int *offset,
> > - int target, unsigned short *fragoff);
> > +extern int __ipv6_find_hdr(const struct sk_buff *skb, unsigned int *offset,
> > + int target, unsigned short *fragoff, int *fragflg);
>
> Please, don't do this.
>
> the convention in the kernel is to use __function for non-locked
> versions of one function.
>
> The number of clients for this function seems small. I'll be very
> happy if you send me a patch that changes this interface and that
> propagates the changes to other clients of it.
>
No problem, I'll fix this.
I have some minor compilation warnings with out nat to fix also in the other patch.
Thanks
Hans
next prev parent reply other threads:[~2012-01-04 20:48 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-01-02 15:06 [v5 PATCH 0/3] NETFILTER new target module, HMARK Hans Schillstrom
2012-01-02 15:06 ` [v5 PATCH 1/3] NETFILTER added flags to __ipv6_find_hdr() Hans Schillstrom
2012-01-04 17:37 ` Pablo Neira Ayuso
2012-01-04 20:48 ` Hans Schillstrom [this message]
2012-01-02 15:06 ` [v5 PATCH 2/3] NETFILTER module xt_hmark, new target for HASH based fwmark Hans Schillstrom
2012-01-02 15:06 ` [v5 PATCH 3/3] NETFILTER userspace part for target HMARK Hans Schillstrom
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=201201042148.11614.hans@schillstrom.com \
--to=hans@schillstrom.com \
--cc=hans.schillstrom@ericsson.com \
--cc=jengelh@medozas.de \
--cc=kaber@trash.net \
--cc=netdev@vger.kernel.org \
--cc=netfilter-devel@vger.kernel.org \
--cc=pablo@netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).