netfilter: xtables: remove xt_connmark v0

Superseded by xt_connmark v1 (v2.6.24-2919-g96e3227). Signed-off-by: Jan Engelhardt <jengelh@medozas.de>
author: Jan Engelhardt <jengelh@medozas.de> 2009-06-12 12:50:33 -0400
committer: Jan Engelhardt <jengelh@medozas.de> 2009-08-10 06:25:12 -0400
commit: 84899a2b9adaf6c2e20d198d7c24562ce6b391d8 (patch)
tree: a0a2c4d9ffc22b283b66ed75640d5df17ccc7228 /net
parent: c8001f7fd5a4684280fddceed9fae9ea2e4fb521 (diff)
1 files changed, 11 insertions, 90 deletions
diff --git a/net/netfilter/xt_connmark.c b/net/netfilter/xt_connmark.c
index 86cacab7a4a3..122aa8b0147b 100644
--- a/net/netfilter/xt_connmark.c
+++ b/net/netfilter/xt_connmark.c
@@ -47,36 +47,6 @@ connmark_mt(const struct sk_buff *skb, const struct xt_match_param *par)
        return ((ct->mark & info->mask) == info->mark) ^ info->invert;
 }
-static bool
-connmark_mt_v0(const struct sk_buff *skb, const struct xt_match_param *par)
-{
-        const struct xt_connmark_info *info = par->matchinfo;
-        const struct nf_conn *ct;
-        enum ip_conntrack_info ctinfo;
-        ct = nf_ct_get(skb, &ctinfo);
-        if (!ct)
-                return false;
-        return ((ct->mark & info->mask) == info->mark) ^ info->invert;
-}
-static bool connmark_mt_check_v0(const struct xt_mtchk_param *par)
-{
-        const struct xt_connmark_info *cm = par->matchinfo;
-        if (cm->mark > 0xffffffff || cm->mask > 0xffffffff) {
-                printk(KERN_WARNING "connmark: only support 32bit mark\n");
-                return false;
-        }
-        if (nf_ct_l3proto_try_module_get(par->family) < 0) {
-                printk(KERN_WARNING "can't load conntrack support for "
-                                    "proto=%u\n", par->family);
-                return false;
-        }
-        return true;
-}
 static bool connmark_mt_check(const struct xt_mtchk_param *par)
 {
        if (nf_ct_l3proto_try_module_get(par->family) < 0) {
@@ -92,74 +62,25 @@ static void connmark_mt_destroy(const struct xt_mtdtor_param *par)
        nf_ct_l3proto_module_put(par->family);
 }
-#ifdef CONFIG_COMPAT
+static struct xt_match connmark_mt_reg __read_mostly = {
-struct compat_xt_connmark_info {
+        .name           = "connmark",
-        compat_ulong_t  mark, mask;
+        .revision       = 1,
-        u_int8_t        invert;
+        .family         = NFPROTO_UNSPEC,
-        u_int8_t        __pad1;
+        .checkentry     = connmark_mt_check,
-        u_int16_t       __pad2;
+        .match          = connmark_mt,
-};
+        .matchsize      = sizeof(struct xt_connmark_mtinfo1),
+        .destroy        = connmark_mt_destroy,
-static void connmark_mt_compat_from_user_v0(void *dst, void *src)
+        .me             = THIS_MODULE,
-{
-        const struct compat_xt_connmark_info *cm = src;
-        struct xt_connmark_info m = {
-                .mark   = cm->mark,
-                .mask   = cm->mask,
-                .invert = cm->invert,
-        };
-        memcpy(dst, &m, sizeof(m));
-}
-static int connmark_mt_compat_to_user_v0(void __user *dst, void *src)
-{
-        const struct xt_connmark_info *m = src;
-        struct compat_xt_connmark_info cm = {
-                .mark   = m->mark,
-                .mask   = m->mask,
-                .invert = m->invert,
-        };
-        return copy_to_user(dst, &cm, sizeof(cm)) ? -EFAULT : 0;
-}
-#endif /* CONFIG_COMPAT */
-static struct xt_match connmark_mt_reg[] __read_mostly = {
-        {
-                .name           = "connmark",
-                .revision       = 0,
-                .family         = NFPROTO_UNSPEC,
-                .checkentry     = connmark_mt_check_v0,
-                .match          = connmark_mt_v0,
-                .destroy        = connmark_mt_destroy,
-                .matchsize      = sizeof(struct xt_connmark_info),
-#ifdef CONFIG_COMPAT
-                .compatsize     = sizeof(struct compat_xt_connmark_info),
-                .compat_from_user = connmark_mt_compat_from_user_v0,
-                .compat_to_user = connmark_mt_compat_to_user_v0,
-#endif
-                .me             = THIS_MODULE
-        },
-        {
-                .name           = "connmark",
-                .revision       = 1,
-                .family         = NFPROTO_UNSPEC,
-                .checkentry     = connmark_mt_check,
-                .match          = connmark_mt,
-                .matchsize      = sizeof(struct xt_connmark_mtinfo1),
-                .destroy        = connmark_mt_destroy,
-                .me             = THIS_MODULE,
-        },
 };
 static int __init connmark_mt_init(void)
 {
-        return xt_register_matches(connmark_mt_reg,
+        return xt_register_match(&connmark_mt_reg);
-               ARRAY_SIZE(connmark_mt_reg));
 }
 static void __exit connmark_mt_exit(void)
 {
-        xt_unregister_matches(connmark_mt_reg, ARRAY_SIZE(connmark_mt_reg));
+        xt_unregister_match(&connmark_mt_reg);
 }
 module_init(connmark_mt_init);
author	Jan Engelhardt <jengelh@medozas.de>	2009-06-12 12:50:33 -0400
committer	Jan Engelhardt <jengelh@medozas.de>	2009-08-10 06:25:12 -0400
commit	84899a2b9adaf6c2e20d198d7c24562ce6b391d8 (patch)
tree	a0a2c4d9ffc22b283b66ed75640d5df17ccc7228 /net
parent	c8001f7fd5a4684280fddceed9fae9ea2e4fb521 (diff)

diff --git a/net/netfilter/xt_connmark.c b/net/netfilter/xt_connmark.c index 86cacab7a4a3..122aa8b0147b 100644 --- a/net/netfilter/xt_connmark.c +++ b/net/netfilter/xt_connmark.c
@@ -47,36 +47,6 @@ connmark_mt(const struct sk_buff skb, const struct xt_match_param par)
47	return ((ct->mark & info->mask) == info->mark) ^ info->invert;	47	return ((ct->mark & info->mask) == info->mark) ^ info->invert;
48	}	48	}
49		49
50	static bool
51	connmark_mt_v0(const struct sk_buff skb, const struct xt_match_param par)
52	{
53	const struct xt_connmark_info *info = par->matchinfo;
54	const struct nf_conn *ct;
55	enum ip_conntrack_info ctinfo;
56
57	ct = nf_ct_get(skb, &ctinfo);
58	if (!ct)
59	return false;
60
61	return ((ct->mark & info->mask) == info->mark) ^ info->invert;
62	}
63
64	static bool connmark_mt_check_v0(const struct xt_mtchk_param *par)
65	{
66	const struct xt_connmark_info *cm = par->matchinfo;
67
68	if (cm->mark > 0xffffffff \|\| cm->mask > 0xffffffff) {
69	printk(KERN_WARNING "connmark: only support 32bit mark\n");
70	return false;
71	}
72	if (nf_ct_l3proto_try_module_get(par->family) < 0) {
73	printk(KERN_WARNING "can't load conntrack support for "
74	"proto=%u\n", par->family);
75	return false;
76	}
77	return true;
78	}
79
80	static bool connmark_mt_check(const struct xt_mtchk_param *par)	50	static bool connmark_mt_check(const struct xt_mtchk_param *par)
81	{	51	{
82	if (nf_ct_l3proto_try_module_get(par->family) < 0) {	52	if (nf_ct_l3proto_try_module_get(par->family) < 0) {
@@ -92,74 +62,25 @@ static void connmark_mt_destroy(const struct xt_mtdtor_param *par)
92	nf_ct_l3proto_module_put(par->family);	62	nf_ct_l3proto_module_put(par->family);
93	}	63	}
94		64
95	#ifdef CONFIG_COMPAT	65	static struct xt_match connmark_mt_reg __read_mostly = {
96	struct compat_xt_connmark_info {	66	.name = "connmark",
97	compat_ulong_t mark, mask;	67	.revision = 1,
98	u_int8_t invert;	68	.family = NFPROTO_UNSPEC,
99	u_int8_t __pad1;	69	.checkentry = connmark_mt_check,
100	u_int16_t __pad2;	70	.match = connmark_mt,
101	};	71	.matchsize = sizeof(struct xt_connmark_mtinfo1),
102		72	.destroy = connmark_mt_destroy,
103	static void connmark_mt_compat_from_user_v0(void dst, void src)	73	.me = THIS_MODULE,
104	{
105	const struct compat_xt_connmark_info *cm = src;
106	struct xt_connmark_info m = {
107	.mark = cm->mark,
108	.mask = cm->mask,
109	.invert = cm->invert,
110	};
111	memcpy(dst, &m, sizeof(m));
112	}
113
114	static int connmark_mt_compat_to_user_v0(void __user dst, void src)
115	{
116	const struct xt_connmark_info *m = src;
117	struct compat_xt_connmark_info cm = {
118	.mark = m->mark,
119	.mask = m->mask,
120	.invert = m->invert,
121	};
122	return copy_to_user(dst, &cm, sizeof(cm)) ? -EFAULT : 0;
123	}
124	#endif /* CONFIG_COMPAT */
125
126	static struct xt_match connmark_mt_reg[] __read_mostly = {
127	{
128	.name = "connmark",
129	.revision = 0,
130	.family = NFPROTO_UNSPEC,
131	.checkentry = connmark_mt_check_v0,
132	.match = connmark_mt_v0,
133	.destroy = connmark_mt_destroy,
134	.matchsize = sizeof(struct xt_connmark_info),
135	#ifdef CONFIG_COMPAT
136	.compatsize = sizeof(struct compat_xt_connmark_info),
137	.compat_from_user = connmark_mt_compat_from_user_v0,
138	.compat_to_user = connmark_mt_compat_to_user_v0,
139	#endif
140	.me = THIS_MODULE
141	},
142	{
143	.name = "connmark",
144	.revision = 1,
145	.family = NFPROTO_UNSPEC,
146	.checkentry = connmark_mt_check,
147	.match = connmark_mt,
148	.matchsize = sizeof(struct xt_connmark_mtinfo1),
149	.destroy = connmark_mt_destroy,
150	.me = THIS_MODULE,
151	},
152	};	74	};
153		75
154	static int __init connmark_mt_init(void)	76	static int __init connmark_mt_init(void)
155	{	77	{
156	return xt_register_matches(connmark_mt_reg,	78	return xt_register_match(&connmark_mt_reg);
157	ARRAY_SIZE(connmark_mt_reg));
158	}	79	}
159		80
160	static void __exit connmark_mt_exit(void)	81	static void __exit connmark_mt_exit(void)
161	{	82	{
162	xt_unregister_matches(connmark_mt_reg, ARRAY_SIZE(connmark_mt_reg));	83	xt_unregister_match(&connmark_mt_reg);
163	}	84	}
164		85
165	module_init(connmark_mt_init);	86	module_init(connmark_mt_init);