Hi Krzysztof, Pablo, thanks for your advice. it took me a while to get around to have a look at the code but I finally reviewed it a bit. correct me if I'm wrong but it seems that the list of ct extensions is closed. the extension id is defined in enum nf_ct_ext_id and registered in ct->ext whos offset member is NF_CT_EXT_NUM sized. looks like the extensions cannot be expanded if I'm writing my code in a module. have I missed something? thanks, Gidon 2011/9/12 Krzysztof Olędzki <ole@xxxxxx> > > On 2011-09-12 20:53, Pablo Neira Ayuso wrote: >> >> On Mon, Sep 12, 2011 at 01:11:50PM +0300, Gidon Miller wrote: >>> >>> Hi Pablo, >>> thanks for your reply. can you please refer me to any documentation on >>> how to use ct extensions? >> >> Only code, see net/netfilter/nf_conntrack_acct.c for instance. > > Plus: > include/net/netfilter/nf_conntrack_acct.h > include/net/netfilter/nf_conntrack_extend.h > > BTW: if nothing changed, extensions can be only attached to a conntrack before it is confirmed. > > Best regards, > > Krzysztof Olędzki -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
