Re: [PATCH 1/2] xt_connlimit (kernel) - connection limiting

[Yasuyuki KOZAKAI]

Hi,

From: Jan Engelhardt <[EMAIL PROTECTED]>
Date: Sun, 3 Jun 2007 13:12:55 +0200 (MEST)

> +static int __init xt_connlimit_init(void)
> +{
> + need_conntrack_ipv4();
> + return xt_register_match(&xt_connlimit_reg);
> +}

You can use nf_ct_l3proto_try_module_get() instead of introducing
need_conntrack_ipv4(). Please refer xt_state.c and xt_conntrack.c as
example.

-- Yasuyuki Kozakai
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Re: Memory leak in 2.6.11-rc1?

[Yasuyuki KOZAKAI]

(BHi,
(B
(BFrom: YOSHIFUJI Hideaki / [EMAIL PROTECTED](B <[EMAIL PROTECTED]>
(BDate: Mon, 31 Jan 2005 14:16:36 +0900 (JST)
(B
(B> In article <[EMAIL PROTECTED]> (at Mon, 31 Jan 2005 06:00:40 +0100), Patrick 
(B> McHardy <[EMAIL PROTECTED]> says:
(B> 
(B> |We don't need this for IPv6 yet. Once we get nf_conntrack in we
(B> |might need this, but its IPv6 fragment handling is different from
(B> |ip_conntrack, I need to check first.
(B> 
(B> Ok. It would be better to have some comment but anyway...
(B> kozakai-san?
(B
(BIMO, fix for nf_conntrack isn't needed yet. Because someone may change
(BIPv6 fragment handling in nf_conntrack.
(B
(BAnyway, current nf_conntrack passes the original (not de-fragmented) skb to
(BIPv6 stack. nf_conntrack doesn't touch its dst.
(B
(BRegards,
(B
(BYasuyuki KOZAKAI
(B
(BCommunication Platform Laboratory,
(BCorporate Research & Development Center,
(BToshiba Corporation
(B
(B[EMAIL PROTECTED]
(B
(B-
(BTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
(Bthe body of a message to [EMAIL PROTECTED]
(BMore majordomo info at  http://vger.kernel.org/majordomo-info.html
(BPlease read the FAQ at  http://www.tux.org/lkml/