| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 16 Dec 2012 01:59:33 +0100 (CET) From: Jan Engelhardt <jengelh@...i.de> To: Pablo Neira Ayuso <pablo@...filter.org> cc: Jamal Hadi Salim <jhs@...atatu.com>, Yury Stankevich <urykhy@...il.com>, shemonc@...il.com, "netdev@...r.kernel.org" <netdev@...r.kernel.org>, netfilter-devel@...r.kernel.org Subject: Re: tc ipt action On Sunday 2012-12-16 01:27, Pablo Neira Ayuso wrote: >On Sat, Dec 15, 2012 at 04:19:29PM -0500, Jamal Hadi Salim wrote: >> Example, the following should work for >> tc filter add dev eth0 parent ffff: protocol ip u32 match u32 0 0 >> action ipt -j CONNMARK \ >> action mirred egress redirect dev ifb0 >> >commit 7299fa4b615d7f7ee12cde444266f6b31f667f9f > libxt_CONNMARK: use guided option parser > >BTW, I think it would be good if we find the way to check for >libxtables current version (see iptables/configure.ac), so you can >know that we broke binary compatibility again. For the C level, there is XTABLES_VERSION_CODE. #if XTABLES_VERSION_CODE >= 6 if (m != NULL && m->x6_parse != NULL) m->x6_parse(...) #else else if (m != NULL && m->parse != NULL) m->parse(...) ... We can also export this through pkgconfig, similar to how downstream users are to discover the plugin dir (`pkg-config xtables --variable libdir`). -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists