diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2010-10-12 13:24:08 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2010-11-08 23:40:33 +0100 |
commit | b245e4092c5a7f09729e64868a42e13f48ac5db8 (patch) | |
tree | a31692d718120b9c17951e2e583c3a7d554602ab /utils/ctexp_events.c | |
parent | 417dc5fb87ade355d699ea523de870abc6dd1657 (diff) |
src: allow to use nfct handler for conntrack and expectations at the same time
This patch re-works the callback handling to allow the use the same socket
to send/receive commands and listen to events of both conntrack and
expectation subsystems. Now you can register one callback for conntrack
and one for expectation with the same handler with no problems (before
this patch, this was not possible, you required two different handlers).
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'utils/ctexp_events.c')
-rw-r--r-- | utils/ctexp_events.c | 70 |
1 files changed, 70 insertions, 0 deletions
diff --git a/utils/ctexp_events.c b/utils/ctexp_events.c new file mode 100644 index 0000000..1df5729 --- /dev/null +++ b/utils/ctexp_events.c @@ -0,0 +1,70 @@ +#include <stdio.h> +#include <stdlib.h> +#include <errno.h> + +#include <libnetfilter_conntrack/libnetfilter_conntrack.h> + +static int n = 0; + +static int +ct_event_cb(enum nf_conntrack_msg_type type,struct nf_conntrack *ct, void *data) +{ + char buf[1024]; + + nfct_snprintf(buf, 1024, ct, type, NFCT_O_PLAIN, NFCT_OF_TIME); + printf("[CT] %s\n", buf); + + if (++n == 20) + return NFCT_CB_STOP; + + return NFCT_CB_CONTINUE; +} + +static int +exp_event_cb(enum nf_conntrack_msg_type type,struct nf_expect *exp, void *data) +{ + char buf[1024]; + + nfexp_snprintf(buf, 1024, exp, type, NFCT_O_DEFAULT, 0); + printf("[EXP] %s\n", buf); + + if (++n == 20) + return NFCT_CB_STOP; + + return NFCT_CB_CONTINUE; +} + +int main(void) +{ + int ret = 0; + struct nfct_handle *h; + + h = nfct_open(NFNL_SUBSYS_NONE, NF_NETLINK_CONNTRACK_EXP_NEW | + NF_NETLINK_CONNTRACK_EXP_UPDATE | + NF_NETLINK_CONNTRACK_EXP_DESTROY | + NF_NETLINK_CONNTRACK_NEW | + NF_NETLINK_CONNTRACK_UPDATE | + NF_NETLINK_CONNTRACK_DESTROY); + if (h == NULL) { + perror("nfct_open"); + return -1; + } + + nfexp_callback_register(h, NFCT_T_ALL, exp_event_cb, NULL); + nfct_callback_register(h, NFCT_T_ALL, ct_event_cb, NULL); + + printf("TEST: waiting for 20 expectation events...\n"); + + /* we may use nfexp_catch() instead, it would also work. */ + ret = nfct_catch(h); + + printf("TEST: expectation events "); + if (ret == -1) + printf("(%d)(%s)\n", ret, strerror(errno)); + else + printf("(OK)\n"); + + nfct_close(h); + + ret == -1 ? exit(EXIT_FAILURE) : exit(EXIT_SUCCESS); +} |