git.baikalelectronics.ru Git - kernel.git/commit

author	Arturo Borrero <arturo.borrero.glez@gmail.com>
	Thu, 4 Sep 2014 12:06:49 +0000 (14:06 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Tue, 9 Sep 2014 14:31:29 +0000 (16:31 +0200)
commit	c9f0d48f7a3d3659f9534d3d9010c8e25e972b99
tree	ace7d6c1ecd491aa68d3a1b3ad4b8829dd40305f	tree \| snapshot
parent	8b629ca2fc8da364fbb30b651a6a9fc1676bc113	commit \| diff

netfilter: nf_nat: generalize IPv6 masquerading support for nf_tables

Let's refactor the code so we can reach the masquerade functionality
from outside the xt context (ie. nftables).

The patch includes the addition of an atomic counter to the masquerade
notifier: the stuff to be done by the notifier is the same for xt and
nftables. Therefore, only one notification handler is needed.

This factorization only involves IPv6; a similar patch exists to
handle IPv4.

Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

include/net/netfilter/ipv6/nf_nat_masquerade.h	[new file with mode: 0644]	blob
net/ipv6/netfilter/Kconfig		diff \| blob \| history
net/ipv6/netfilter/Makefile		diff \| blob \| history
net/ipv6/netfilter/ip6t_MASQUERADE.c		diff \| blob \| history
net/ipv6/netfilter/nf_nat_masquerade_ipv6.c	[new file with mode: 0644]	blob