| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
| |
o libnetfilter_conntrack.h splitted into two parts: what is visible to
application programs and what is visible to extensions.
o Killed includes asm/types.h and linux/if.h
o Fixed nasty wrong ipv6 definition
o Stolen the status bits from ip_conntrack.h, we don't include ip_conntrack.h
anymore.
o move nfct_handle to libnetfilter_conntrack.c: better for encapsulation
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
o Added some very brief comments to libnetfilter_conntrack.h
o Implemented the conntrack printers API nfct_sprintf_*
o Now nfct_default_conntrack_display display the classical /proc output,
and nfct_default_conntrack_display the classical + conntrack ids
o Use nfnl_talk if there's no data expected from kernel space to be processed,
that is the case of nfct_[get|delete]_conntrack
o Added some missing memset's zeroing
o Code simplification: killed some char *buf where struct nfnlhdr is enough
o Killed protocol handler destructors (fini) and nfct_unregister_proto: The
library is unloaded if something goes wrong (different library versions), the
modules never gets inserted in the proto_list. Fixes a segfault.
o Bumped version to 0.2.0
|
|
|
|
|
|
|
|
|
|
|
| |
o NFCT_COUNTERS splitted in NFCT_COUNTERS_[ORIG|RPLY]
o all global vars are now static
o kill nfct_set_handler, it was too much
o fixed very stupid bug in counters printing
o fixed conntrack getting: invalid netlink flags NLM_F_[ROOT|MATCH]
o nfnl_send returns the proper error to the client, instead of returning -1
o some cleanup's: killed the ret, it was useless
o test for the conntrack API completed, still missing the expectation test
|
|
|
|
|
|
| |
o Define NFCT_ANY_GROUP flag
o Now callback can return a value to stop receiving events
o implement nfct_unset_callback()
|
|
|
|
|
|
|
|
| |
o Add support for ID's
o Fixed stupid bug in NFCT_* flags, I'm stupid
o Simplify handler logic
o Define event message NFCT_MSG_*
o Add support for conntrack marking (kernelspace part still missing)
|
|
|
|
| |
the first 1.0 release
|
|
|
|
|
| |
o fix some indentation
o fix a leak on error path in ncft_open()
|
| |
|
|
|
|
| |
unknown reason this didn't happen in the lastest commit.
|
|
|
|
|
| |
We provide an high level interface that abstracts from the netlink
sockets. Now users don't need to know anything about them.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
include/Makefile.am.
- Rename list_conntrack_handler to callback_handler, IMHO a proper name for such function.
- Use new nfnl_open prototype: Now it's got four parameters.
- Kill recurrent definition of the structure nfnlhdr: Actually this should go somewhere in
libnfnetlink, later.
- Ignore utils subdirectory. It contains a testsuite that is currently broken. Yes I know you're
aware of it ;) it's on the TODO list. I'll fix later.
- ctnl_error now has a nicer definition.
- kill some unneeded ctnl_error messages on failure.
(Pablo Neira)
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
libnfnetlink_conntrack library:
a) change ctnl_open prototype: Now the subsystem is passed as parameter to
select if we work working with given subsystem, say
NFNL_CTNETLINK_CONNTRACK[_EXP].
b) added functions ctnl_[new|get|del]_expect
c) minor change in ctnl_build_tuple that let us create tuples based on CTA_*
and CTA_EXPECT_* attributes.
(Pablo Neira)
|
| |
|
|
|