Blame view
net/netfilter/nf_tproxy_core.c
1.38 KB
9ad2d745a
netfilter: iptabl...
|
1 2 3 4 5 6 7 8 9 10 11 |
/* * Transparent proxy support for Linux/iptables * * Copyright (c) 2006-2007 BalaBit IT Ltd. * Author: Balazs Scheidler, Krisztian Kovacs * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2 as * published by the Free Software Foundation. * */ |
|
9ad2d745a
netfilter: iptabl...
|
12 13 14 15 16 17 18 |
#include <linux/module.h> #include <linux/net.h> #include <linux/if.h> #include <linux/netdevice.h> #include <net/udp.h> #include <net/netfilter/nf_tproxy_core.h> |
|
9ad2d745a
netfilter: iptabl...
|
19 20 21 22 23 24 25 26 27 28 |
static void
nf_tproxy_destructor(struct sk_buff *skb)
{
struct sock *sk = skb->sk;
skb->sk = NULL;
skb->destructor = NULL;
if (sk)
|
d503b30bd
netfilter: tproxy...
|
29 |
sock_put(sk); |
|
9ad2d745a
netfilter: iptabl...
|
30 31 32 |
} /* consumes sk */ |
|
d503b30bd
netfilter: tproxy...
|
33 |
void |
|
9ad2d745a
netfilter: iptabl...
|
34 35 |
nf_tproxy_assign_sock(struct sk_buff *skb, struct sock *sk)
{
|
|
d503b30bd
netfilter: tproxy...
|
36 37 38 39 40 41 42 43 44 45 |
/* assigning tw sockets complicates things; most
* skb->sk->X checks would have to test sk->sk_state first */
if (sk->sk_state == TCP_TIME_WAIT) {
inet_twsk_put(inet_twsk(sk));
return;
}
skb_orphan(skb);
skb->sk = sk;
skb->destructor = nf_tproxy_destructor;
|
|
9ad2d745a
netfilter: iptabl...
|
46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 |
}
EXPORT_SYMBOL_GPL(nf_tproxy_assign_sock);
static int __init nf_tproxy_init(void)
{
pr_info("NF_TPROXY: Transparent proxy support initialized, version 4.1.0
");
pr_info("NF_TPROXY: Copyright (c) 2006-2007 BalaBit IT Ltd.
");
return 0;
}
module_init(nf_tproxy_init);
MODULE_LICENSE("GPL");
MODULE_AUTHOR("Krisztian Kovacs");
MODULE_DESCRIPTION("Transparent proxy support core routines");
|