5494bc40f4
Merge branch 'maint' into newage
2012-11-12 19:01:31 +01:00
bcdb7ed4e9
Update my email address
...
To ... none! Whatever is recent is in the git log.
2012-11-12 19:01:14 +01:00
1ed86c6bbd
build: remove support for Linux 3.6 / switch xt_DNETMAP to nf_nat
2012-11-12 18:42:11 +01:00
2a5f1099c8
build: remove support for Linux 3.5
2012-11-12 18:31:33 +01:00
c243c78af4
build: remove support for Linux 3.4
2012-11-12 18:31:28 +01:00
91da2a0dbd
build: remove support for Linux 3.3
2012-11-12 18:31:22 +01:00
a160a2aa36
build: remove support for Linux 3.2
2012-11-12 18:31:16 +01:00
b25e96fd49
build: remove support for Linux 3.1
2012-11-12 18:31:08 +01:00
6d74f76a29
build: remove support for Linux 3.0
2012-11-12 18:31:03 +01:00
78e47758c6
build: remove support for Linux 2.6.39
2012-11-12 18:30:49 +01:00
bcdd42f556
build: remove support for Linux 2.6.38
2012-11-12 18:30:42 +01:00
acf92ff914
build: remove support for Linux 2.6.37
2012-11-12 18:30:36 +01:00
0e845bf23f
build: remove support for Linux 2.6.36
2012-11-12 18:30:30 +01:00
158e6a26eb
xt_CHECKSUM: remove the module
...
This is available in upstream Linux 2.6.36+.
2012-11-12 18:30:20 +01:00
693c32f414
build: remove support for Linux 2.6.35
2012-11-12 18:30:19 +01:00
3e337562d7
xt_TEE: remove the module
...
This is available in upstream Linux 2.6.35+.
2012-11-12 18:30:09 +01:00
bb25bc08c4
build: remove support for Linux 2.6.34
2012-11-12 18:30:08 +01:00
ea3e4b2ed5
build: remove support for Linux 2.6.33
2012-11-12 18:30:01 +01:00
557af2177f
build: remove support for Linux 2.6.32
2012-11-12 18:29:53 +01:00
60f5239630
build: remove support for Linux 2.6.31
2012-10-16 04:16:57 +02:00
3ba7d8c3a9
build: remove support for Linux 2.6.30
2012-10-16 04:16:57 +02:00
28d12faba8
build: remove support for Linux 2.6.29
2012-10-16 04:16:57 +02:00
cf7a3d4342
build: remove support for Linux 2.6.28
2012-10-16 04:16:57 +02:00
fabad77f8f
build: remove support for Linux 2.6.27
2012-10-16 04:16:57 +02:00
5e020d380c
build: remove support for Linux 2.6.26
2012-10-16 04:16:57 +02:00
a7fbf4f4de
build: remove support for Linux 2.6.25
2012-10-16 04:16:57 +02:00
4137f6c111
build: remove support for Linux 2.6.24
2012-10-16 04:16:57 +02:00
04d8ebe31c
build: remove support for Linux 2.6.23
2012-10-16 04:16:56 +02:00
6ab4c02a54
build: remove support for Linux 2.6.22
2012-10-16 04:16:56 +02:00
a66e4510b8
build: remove support for Linux 2.6.21
2012-10-16 02:36:14 +02:00
31aebc134e
build: remove support for Linux 2.6.20
2012-10-16 02:36:10 +02:00
e640a15ec9
build: remove support for Linux 2.6.19
2012-10-16 02:36:06 +02:00
66f213e324
build: remove support for Linux 2.6.18
2012-10-16 02:36:02 +02:00
0dcc56bc62
build: remove support for Linux 2.6.17
2012-10-16 02:35:57 +02:00
8db01220fd
Xtables-addons 1.47.1
2012-10-15 21:29:22 +02:00
95ff9a2de3
build: resolve compiler error
...
extensions/xt_psd.c:141:2: error: implicit declaration of function
'vmalloc' [-Werror=implicit-function-declaration]
2012-10-15 21:15:25 +02:00
2f1e094125
Xtables-addons 1.47
2012-10-15 20:03:02 +02:00
37b000182f
xt_psd: replace vzalloc by vmalloc+memset
...
The lower support boundary is currently 2.6.32, but vzalloc is only
available since 2.6.37.
2012-10-15 20:02:43 +02:00
255a310536
Merge branch 'psd'
2012-09-18 07:33:00 +02:00
3a6e73e986
xt_psd: add IPv6 support
...
Because most users will probably only use IPv4 psd, allocate most of the
state6 storage when the first IPv6 psd rule is added, and not at module
load time via .bss.
2012-09-18 03:33:37 +02:00
0a97126f5b
xt_psd: move IPv4 state locking responsibility to caller
...
The former psd_match function is now < 72 lines.
2012-09-18 02:53:02 +02:00
2ba833fe47
xt_psd: move L4 header fetching into helper
...
Also start splitting psd_match into two functions, one to do initial
sanity checking and header retrieval, one to do the actual work.
2012-09-18 02:47:30 +02:00
77240e0918
xt_psd: use tcph->dest directly
...
This allows us to move more code away from the main match function.
2012-09-18 02:45:17 +02:00
651e60f8d7
xt_psd: move table cleanup into helper
2012-09-18 02:43:04 +02:00
54ac2a899a
xt_psd: split struct host into generic and AF-dependent structure
2012-09-18 02:42:22 +02:00
61d2be172d
xt_psd: remove unneeded variables, make hash unsigned
...
- dest port and dest address were only written, never read
- struct inaddr isn't needed either, just look at iph->saddr
2012-09-18 02:41:15 +02:00
093f3b0a97
xt_psd: move match functionality to helpers
...
Reduce line count and to allow code reuse when IPv6 support will be
introduced.
2012-09-17 04:44:29 +02:00
57d25f22f1
xt_psd: avoid if (c=h) do {..} while (c = c->next)
...
It is aquivalent to c=h; while (c) { ..; c = c->next; }
which is a bit easier to read.
2012-09-17 04:42:56 +02:00
2f18ab31ec
xt_psd: move parts of main match function to helpers
...
The match function is way too large, start to split this into smaller
chunks.
2012-09-17 00:02:49 +02:00
12d0a8702c
xt_psd: consider protocol when searching port list
...
If we saw a TCP packet on port X, and we receive a UDP packet from the
same host to port X, we counted this as "port X", and did not see this
as a new packet.
Change compare to also consider protocol number and move it to a helper
to de-bloat the overlay large match function.
This change makes psd more aggressive with mixed TCP/UDP traffic.
2012-09-17 00:02:45 +02:00
Jan Engelhardt