* [Bug translator/13667] New: expose netfilter hook
@ 2012-02-06 16:31 fche at redhat dot com
2012-03-07 19:55 ` [Bug translator/13667] " cmeek at redhat dot com
0 siblings, 1 reply; 2+ messages in thread
From: fche at redhat dot com @ 2012-02-06 16:31 UTC (permalink / raw)
To: systemtap
http://sourceware.org/bugzilla/show_bug.cgi?id=13667
Bug #: 13667
Summary: expose netfilter hook
Product: systemtap
Version: unspecified
Status: NEW
Severity: normal
Priority: P2
Component: translator
AssignedTo: systemtap@sourceware.org
ReportedBy: fche@redhat.com
Classification: Unclassified
The netfilter hook mechanism is a legacy linux kernel mechanism
that (in the absence of tracepoints) could be an attractive
alternative to kprobes for monitoring or even manipulating
network traffic. See <linux/netfilter.h>, net/netfilter/core.c
nf_iterate().
Possible basic probe point syntax:
probe netfilter.hook {
do_something_with ($skb, $in, $out)
# dunno what to do with $okfn
$verdict = NF_DROP
}
With extensions expressed as filters on those $values possibly
expressed as:
probe netfilter.hook.sk_family("PF_INET").indev("eth0").outdev("eth0") {
do_something_with ($skb)
$verdict = NF_QUEUE|nf_queue_number(4)
}
--
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
^ permalink raw reply [flat|nested] 2+ messages in thread
* [Bug translator/13667] expose netfilter hook
2012-02-06 16:31 [Bug translator/13667] New: expose netfilter hook fche at redhat dot com
@ 2012-03-07 19:55 ` cmeek at redhat dot com
0 siblings, 0 replies; 2+ messages in thread
From: cmeek at redhat dot com @ 2012-03-07 19:55 UTC (permalink / raw)
To: systemtap
http://sourceware.org/bugzilla/show_bug.cgi?id=13667
Chris Meek <cmeek at redhat dot com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
CC| |cmeek at redhat dot com
AssignedTo|systemtap at sourceware dot |cmeek at redhat dot com
|org |
--
Configure bugmail: http://sourceware.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2012-03-07 19:55 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2012-02-06 16:31 [Bug translator/13667] New: expose netfilter hook fche at redhat dot com
2012-03-07 19:55 ` [Bug translator/13667] " cmeek at redhat dot com
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).