| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20080331123311.64e4ca37@extreme> Date: Mon, 31 Mar 2008 12:33:11 -0700 From: Stephen Hemminger <shemminger@...tta.com> To: Patrick McHardy <kaber@...sh.net> Cc: David Miller <davem@...emloft.net>, Jamal <hadi@...erus.ca>, netdev@...r.kernel.org Subject: Re: [PATCH net-2.6.26] netlink: make socket filters work on netlink On Wed, 26 Mar 2008 21:19:56 +0100 Patrick McHardy <kaber@...sh.net> wrote: > Stephen Hemminger wrote: > > Make socket filters work for netlink unicast and notifications. > > This is useful for applications like Zebra that get overrun with > > messages that are then ignored. > > > > Note: netlink messages are in host byte order, but packet filter > > state machine operations are done as network byte order. > > > Do you have an example for a filter for this? I have a similar > patch that adds a new filter instruction for parsing netlink > attributes, which seemed necessary for getting at nested > attributes without too much trouble. > > Attached for reference together with a libnl testing > patch for ctnetlink. > Here is the example program: it uses netlink IPC and has one thread send route notifications and the other filters. to test the mulitcast path used a hacked version of ip_monitor from iproute see attachment for the quagga patch. View attachment "netlink-ipc.c" of type "text/x-csrc" (4831 bytes) View attachment "zebra-filter.patch" of type "text/x-patch" (2768 bytes)
Powered by blists - more mailing lists