tjh.dev / kernel
Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel os linux
1
fork

Configure Feed

Select the types of activity you want to include in your feed.

kernel / net / netfilter / xt_NFLOG.c
at 4b46ca701bdcdc19fcf32823f9fcabf8236e4e78 85 lines 2.2 kB view raw
1/* 2 * Copyright (c) 2006 Patrick McHardy <kaber@trash.net> 3 * 4 * This program is free software; you can redistribute it and/or modify 5 * it under the terms of the GNU General Public License version 2 as 6 * published by the Free Software Foundation. 7 */ 8 9#include <linux/module.h> 10#include <linux/init.h> 11#include <linux/skbuff.h> 12 13#include <linux/netfilter/x_tables.h> 14#include <linux/netfilter/xt_NFLOG.h> 15#include <net/netfilter/nf_log.h> 16 17MODULE_AUTHOR("Patrick McHardy <kaber@trash.net>"); 18MODULE_DESCRIPTION("Xtables: packet logging to netlink using NFLOG"); 19MODULE_LICENSE("GPL"); 20MODULE_ALIAS("ipt_NFLOG"); 21MODULE_ALIAS("ip6t_NFLOG"); 22 23static unsigned int 24nflog_tg(struct sk_buff *skb, const struct net_device *in, 25 const struct net_device *out, unsigned int hooknum, 26 const struct xt_target *target, const void *targinfo) 27{ 28 const struct xt_nflog_info *info = targinfo; 29 struct nf_loginfo li; 30 31 li.type = NF_LOG_TYPE_ULOG; 32 li.u.ulog.copy_len = info->len; 33 li.u.ulog.group = info->group; 34 li.u.ulog.qthreshold = info->threshold; 35 36 nf_log_packet(target->family, hooknum, skb, in, out, &li, 37 "%s", info->prefix); 38 return XT_CONTINUE; 39} 40 41static bool 42nflog_tg_check(const char *tablename, const void *entry, 43 const struct xt_target *target, void *targetinfo, 44 unsigned int hookmask) 45{ 46 const struct xt_nflog_info *info = targetinfo; 47 48 if (info->flags & ~XT_NFLOG_MASK) 49 return false; 50 if (info->prefix[sizeof(info->prefix) - 1] != '\0') 51 return false; 52 return true; 53} 54 55static struct xt_target nflog_tg_reg[] __read_mostly = { 56 { 57 .name = "NFLOG", 58 .family = AF_INET, 59 .checkentry = nflog_tg_check, 60 .target = nflog_tg, 61 .targetsize = sizeof(struct xt_nflog_info), 62 .me = THIS_MODULE, 63 }, 64 { 65 .name = "NFLOG", 66 .family = AF_INET6, 67 .checkentry = nflog_tg_check, 68 .target = nflog_tg, 69 .targetsize = sizeof(struct xt_nflog_info), 70 .me = THIS_MODULE, 71 }, 72}; 73 74static int __init nflog_tg_init(void) 75{ 76 return xt_register_targets(nflog_tg_reg, ARRAY_SIZE(nflog_tg_reg)); 77} 78 79static void __exit nflog_tg_exit(void) 80{ 81 xt_unregister_targets(nflog_tg_reg, ARRAY_SIZE(nflog_tg_reg)); 82} 83 84module_init(nflog_tg_init); 85module_exit(nflog_tg_exit);