On 2021-10-20 06:56, Kumar Kartikeya Dwivedi wrote:
On Tue, Oct 19, 2021 at 08:16:52PM IST, Maxim Mikityanskiy wrote:
The new helpers (bpf_ct_lookup_tcp and bpf_ct_lookup_udp) allow to query
connection tracking information of TCP and UDP connections based on
source and destination IP address and port. The helper returns a pointer
to struct nf_conn (if the conntrack entry was found), which needs to be
released with bpf_ct_release.
Signed-off-by: Maxim Mikityanskiy <maximmi@xxxxxxxxxx>
Reviewed-by: Tariq Toukan <tariqt@xxxxxxxxxx>
The last discussion on this [0] suggested that stable BPF helpers for conntrack
were not desired, hence the recent series [1] to extend kfunc support to modules
and base the conntrack work on top of it, which I'm working on now (supporting
both CT lookup and insert).
If you have conntrack lookup, I can base my solution on top of yours. As
it supports modules, it's even better. What is the current status of
your work? When do you plan to submit a series? Please add me to Cc when
you do.
Thanks for reviewing!
[0]: https://lore.kernel.org/bpf/CAADnVQJTJzxzig=1vvAUMXELUoOwm2vXq0ahP4mfhBWGsCm9QA@xxxxxxxxxxxxxx
[1]: https://lore.kernel.org/bpf/CAADnVQKDPG+U-NwoAeNSU5Ef9ZYhhGcgL4wBkFoP-E9h8-XZhw@xxxxxxxxxxxxxx
--
Kartikeya
