tjh.dev / kernel
Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel os linux
fork atom

netfilter: Update obsolete comments referring to ip_conntrack

In 9fb9cbb1082d ("[NETFILTER]: Add nf_conntrack subsystem.") the new
generic nf_conntrack was introduced, and it came to supersede the old
ip_conntrack.

This change updates (some) of the obsolete comments referring to old
file/function names of the ip_conntrack mechanism, as well as removes a
few self-referencing comments that we shouldn't maintain anymore.

I did not update any comments referring to historical actions (e.g,
comments like "this file was derived from ..." were left untouched, even
if the referenced file is no longer here).

Signed-off-by: Yonatan Goldschmidt <yon.goldschmidt@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

authored by

Yonatan Goldschmidt and committed by
Pablo Neira Ayuso 05ba4c89 3c00fb0b

+10 -18
+1 -2
include/linux/netfilter/nf_conntrack_h323_asn1.h
··· 1 1 /* SPDX-License-Identifier: GPL-2.0-only */ 2 2 /**************************************************************************** 3 - * ip_conntrack_h323_asn1.h - BER and PER decoding library for H.323 4 - * conntrack/NAT module. 3 + * BER and PER decoding library for H.323 conntrack/NAT module. 5 4 * 6 5 * Copyright (c) 2006 by Jing Min Zhao <zhaojingmin@users.sourceforge.net> 7 6 *
+2 -2
net/ipv4/netfilter/ipt_CLUSTERIP.c
··· 416 416 ctinfo == IP_CT_RELATED_REPLY)) 417 417 return XT_CONTINUE; 418 418 419 - /* ip_conntrack_icmp guarantees us that we only have ICMP_ECHO, 420 - * TIMESTAMP, INFO_REQUEST or ADDRESS type icmp packets from here 419 + /* nf_conntrack_proto_icmp guarantees us that we only have ICMP_ECHO, 420 + * TIMESTAMP, INFO_REQUEST or ICMP_ADDRESS type icmp packets from here 421 421 * on, which all have an ID field [relevant for hashing]. */ 422 422 423 423 hash = clusterip_hashfn(skb, cipinfo->config);
+2 -4
net/netfilter/Kconfig
··· 223 223 of Network Address Translation on them. 224 224 225 225 This is FTP support on Layer 3 independent connection tracking. 226 - Layer 3 independent connection tracking is experimental scheme 227 - which generalize ip_conntrack to support other layer 3 protocols. 228 226 229 227 To compile it as a module, choose M here. If unsure, say N. 230 228 ··· 336 338 help 337 339 SIP is an application-layer control protocol that can establish, 338 340 modify, and terminate multimedia sessions (conferences) such as 339 - Internet telephony calls. With the ip_conntrack_sip and 341 + Internet telephony calls. With the nf_conntrack_sip and 340 342 the nf_nat_sip modules you can support the protocol on a connection 341 343 tracking/NATing firewall. 342 344 ··· 1311 1313 depends on NETFILTER_ADVANCED 1312 1314 help 1313 1315 Helper matching allows you to match packets in dynamic connections 1314 - tracked by a conntrack-helper, ie. ip_conntrack_ftp 1316 + tracked by a conntrack-helper, ie. nf_conntrack_ftp 1315 1317 1316 1318 To compile it as a module, choose M here. If unsure, say Y. 1317 1319
+1 -3
net/netfilter/nf_conntrack_core.c
··· 1817 1817 #include <linux/netfilter/nfnetlink_conntrack.h> 1818 1818 #include <linux/mutex.h> 1819 1819 1820 - /* Generic function for tcp/udp/sctp/dccp and alike. This needs to be 1821 - * in ip_conntrack_core, since we don't want the protocols to autoload 1822 - * or depend on ctnetlink */ 1820 + /* Generic function for tcp/udp/sctp/dccp and alike. */ 1823 1821 int nf_ct_port_tuple_to_nlattr(struct sk_buff *skb, 1824 1822 const struct nf_conntrack_tuple *tuple) 1825 1823 {
+2 -3
net/netfilter/nf_conntrack_h323_asn1.c
··· 1 1 // SPDX-License-Identifier: GPL-2.0-only 2 2 /* 3 - * ip_conntrack_helper_h323_asn1.c - BER and PER decoding library for H.323 4 - * conntrack/NAT module. 3 + * BER and PER decoding library for H.323 conntrack/NAT module. 5 4 * 6 5 * Copyright (c) 2006 by Jing Min Zhao <zhaojingmin@users.sourceforge.net> 7 6 * 8 - * See ip_conntrack_helper_h323_asn1.h for details. 7 + * See nf_conntrack_helper_h323_asn1.h for details. 9 8 */ 10 9 11 10 #ifdef __KERNEL__
-2
net/netfilter/nf_conntrack_proto_gre.c
··· 1 1 // SPDX-License-Identifier: GPL-2.0-only 2 2 /* 3 - * ip_conntrack_proto_gre.c - Version 3.0 4 - * 5 3 * Connection tracking protocol helper module for GRE. 6 4 * 7 5 * GRE is a generic encapsulation protocol, which is generally not very
+1 -1
net/netfilter/nf_conntrack_proto_icmp.c
··· 215 215 return -NF_ACCEPT; 216 216 } 217 217 218 - /* See ip_conntrack_proto_tcp.c */ 218 + /* See nf_conntrack_proto_tcp.c */ 219 219 if (state->net->ct.sysctl_checksum && 220 220 state->hook == NF_INET_PRE_ROUTING && 221 221 nf_ip_checksum(skb, state->hook, dataoff, IPPROTO_ICMP)) {
+1 -1
net/netfilter/nf_nat_core.c
··· 519 519 * and NF_INET_LOCAL_OUT, we change the destination to map into the 520 520 * range. It might not be possible to get a unique tuple, but we try. 521 521 * At worst (or if we race), we will end up with a final duplicate in 522 - * __ip_conntrack_confirm and drop the packet. */ 522 + * __nf_conntrack_confirm and drop the packet. */ 523 523 static void 524 524 get_unique_tuple(struct nf_conntrack_tuple *tuple, 525 525 const struct nf_conntrack_tuple *orig_tuple,