subject:"\[PATCH net\-next v5 1\/4\] net\/sched\: Introduce action ct"

Re: [PATCH net-next v5 1/4] net/sched: Introduce action ct

2019-07-09 Thread Paul Blakey

On 7/8/2019 6:28 PM, Florian Westphal wrote: > Marcelo Ricardo Leitner wrote: >>> + } else { /* NFPROTO_IPV6 */ >>> + enum ip6_defrag_users user = IP6_DEFRAG_CONNTRACK_IN + zone; >>> + >>> + memset(IP6CB(skb), 0, sizeof(struct inet6_skb_parm)); >>> + err = nf_ct_fr

Re: [PATCH net-next v5 1/4] net/sched: Introduce action ct

2019-07-08 Thread Florian Westphal

Marcelo Ricardo Leitner wrote: > > + } else { /* NFPROTO_IPV6 */ > > + enum ip6_defrag_users user = IP6_DEFRAG_CONNTRACK_IN + zone; > > + > > + memset(IP6CB(skb), 0, sizeof(struct inet6_skb_parm)); > > + err = nf_ct_frag6_gather(net, skb, user); > > This doesn't bu

Re: [PATCH net-next v5 1/4] net/sched: Introduce action ct

2019-07-08 Thread Marcelo Ricardo Leitner

On Mon, Jul 08, 2019 at 11:51:17AM +0300, Paul Blakey wrote: .. > +static int tcf_ct_handle_fragments(struct net *net, struct sk_buff *skb, > +u8 family, u16 zone) > +{ > + enum ip_conntrack_info ctinfo; > + struct nf_conn *ct; > + int err = 0; > + bo

[PATCH net-next v5 1/4] net/sched: Introduce action ct

2019-07-08 Thread Paul Blakey

Allow sending a packet to conntrack module for connection tracking. The packet will be marked with conntrack connection's state, and any metadata such as conntrack mark and label. This state metadata can later be matched against with tc classifers, for example with the flower classifier as below.