On Tue, Oct 19, 2021 at 08:16:52PM IST, Maxim Mikityanskiy wrote: > The new helpers (bpf_ct_lookup_tcp and bpf_ct_lookup_udp) allow to query > connection tracking information of TCP and UDP connections based on > source and destination IP address and port. The helper returns a pointer > to struct nf_conn (if the conntrack entry was found), which needs to be > released with bpf_ct_release. > > Signed-off-by: Maxim Mikityanskiy <maximmi@xxxxxxxxxx> > Reviewed-by: Tariq Toukan <tariqt@xxxxxxxxxx> The last discussion on this [0] suggested that stable BPF helpers for conntrack were not desired, hence the recent series [1] to extend kfunc support to modules and base the conntrack work on top of it, which I'm working on now (supporting both CT lookup and insert). [0]: https://lore.kernel.org/bpf/CAADnVQJTJzxzig=1vvAUMXELUoOwm2vXq0ahP4mfhBWGsCm9QA@xxxxxxxxxxxxxx [1]: https://lore.kernel.org/bpf/CAADnVQKDPG+U-NwoAeNSU5Ef9ZYhhGcgL4wBkFoP-E9h8-XZhw@xxxxxxxxxxxxxx -- Kartikeya
