From: Liping Zhang <zlpnobody@gmail.com>
To: fgao@ikuai8.com
Cc: Pablo Neira Ayuso <pablo@netfilter.org>,
Patrick McHardy <kaber@trash.net>,
netfilter-devel@vger.kernel.org, netdev@vger.kernel.org,
linux-kernel@vger.kernel.org, gfree.wind@gmail.com
Subject: Re: [PATCH 1/1] netfilter: Add helper array register/unregister functions
Date: Wed, 20 Jul 2016 08:51:17 +0800 [thread overview]
Message-ID: <CAML_gOeTMwf2fDTwwJ9MbjPvnSSx8PDxBy55xE+7EMo5yy5UcA@mail.gmail.com> (raw)
In-Reply-To: <1468813163-18139-1-git-send-email-fgao@ikuai8.com>
2016-07-18 11:39 GMT+08:00 <fgao@ikuai8.com>:
> From: Gao Feng <fgao@ikuai8.com>
>
> Add nf_ct_helper_init, nf_conntrack_helpers_register/unregister
> functions to enhance the conntrack helper codes.
I think this patch is breaking something ...
This irc:
> - if (ports[i] == IRC_PORT)
> - sprintf(irc[i].name, "irc");
> - else
> - sprintf(irc[i].name, "irc-%u", i);
> -
> - ret = nf_conntrack_helper_register(&irc[i]);
> + nf_ct_helper_init(&irc[i], AF_INET, IPPROTO_TCP, "irc",
> + IRC_PORT, ports[i], &irc_exp_policy, 0, 0,
> + help, NULL, THIS_MODULE);
> + }
This sip:
> - if (ports[i] == SIP_PORT)
> - sprintf(sip[i][j].name, "sip");
> - else
> - sprintf(sip[i][j].name, "sip-%u", i);
And this tftp:
> - if (ports[i] == TFTP_PORT)
> - sprintf(tftp[i][j].name, "tftp");
> - else
> - sprintf(tftp[i][j].name, "tftp-%u", i);
For example, if the user install the nf_conntrack_tftp module an
specify the ports to "69,10069",
then the helper name is "tftp" and "tftp-1".
But apply this patch, the helper name will be changed to "tftp" and
"tftp-10069", this may break the
existing iptables rules which used the helper match or CT target.
And this was already discussed at https://patchwork.ozlabs.org/patch/622238/
next prev parent reply other threads:[~2016-07-20 0:51 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-07-18 3:39 [PATCH 1/1] netfilter: Add helper array register/unregister functions fgao
2016-07-19 18:12 ` Pablo Neira Ayuso
[not found] ` <014e01d1e21e$062884b0$12798e10$@ikuai8.com>
2016-07-20 8:50 ` 答复: " Pablo Neira Ayuso
2016-07-20 8:57 ` 答复: " 高峰
2016-07-20 0:51 ` Liping Zhang [this message]
2016-07-20 1:02 ` 高峰
2016-07-20 8:41 ` Pablo Neira Ayuso
2016-07-20 8:40 ` Pablo Neira Ayuso
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CAML_gOeTMwf2fDTwwJ9MbjPvnSSx8PDxBy55xE+7EMo5yy5UcA@mail.gmail.com \
--to=zlpnobody@gmail.com \
--cc=fgao@ikuai8.com \
--cc=gfree.wind@gmail.com \
--cc=kaber@trash.net \
--cc=linux-kernel@vger.kernel.org \
--cc=netdev@vger.kernel.org \
--cc=netfilter-devel@vger.kernel.org \
--cc=pablo@netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).