On Thu, Mar 12, 2015 at 10:05 AM, Florian Westphal <fw@xxxxxxxxx> wrote: > Long time ago it was possible for the netfilter ip_conntrack > core to call ip_fragment in POST_ROUTING hook. > > This is no longer the case, so the only case where bridge netfilter > ends up calling ip_fragment is the direct call site in br_netfilter.c. > > Add ll and mtu arguments for ip_fragment and then get rid of the bridge > netfilter specific helpers from ip_fragment. > > Cc: Andy Zhou <azhou@xxxxxxxxxx> > Signed-off-by: Florian Westphal <fw@xxxxxxxxx> > --- > include/linux/netfilter_bridge.h | 17 ----------------- > include/net/ip.h | 4 ++-- > net/bridge/br_netfilter.c | 23 ++++++++++++++++++++--- > net/ipv4/ip_output.c | 37 +++++++++++++++++++++---------------- > 4 files changed, 43 insertions(+), 38 deletions(-) > > diff --git a/include/linux/netfilter_bridge.h b/include/linux/netfilter_bridge.h > index ed0d3bf..fbbd5de 100644 > --- a/include/linux/netfilter_bridge.h > +++ b/include/linux/netfilter_bridge.h I like this patch a lot. The nf_brdige was confusing to me when I looked into this area. I am happen to it is going away. With this patch, it seems we don't need the 'dev' variable anymore, all we need is 'net' and we can move it into the 'if' block for sending icmp. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
