[PATCH] PF_PACKET filtering hooks for netfilter

• Next message: Andrew Morton: "Re: invalidate_inode_pages in 2.5.32/3"
• Previous message: Bob McElrath: "ide-scsi oops"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi all,

The included patch adds two new hooks to the netfilter framework, at
the packet level.

With this patch, it is now possible to write filtering modules for non
IP/ARP protocols (or even filtering access to user-mode services bound
to a packet socket (DHCP, for example...).

It also add the necessary logic to control such modules via
setsockopt/getsockopt.

I made two version of this patch : one for 2.4.20-pre5, the other for
2.5.33. I'd be very glad to have some feedback from people trying it,
as well as any comment about what is ok and what isn't with this patch.

Thanks a lot,

        M.

• multipart/mixed attachment: PF_PACKET hooks 2.4.20-pre5 (BK)

• multipart/mixed attachment: PF_PACKET hooks 2.5.33 (BK)

-- 
Places change, faces change. Life is so very strange.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

• Next message: Andrew Morton: "Re: invalidate_inode_pages in 2.5.32/3"
• Previous message: Bob McElrath: "ide-scsi oops"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sat Sep 07 2002 - 22:00:32 EST