diff options
Diffstat (limited to 'target/linux/generic-2.6/patches-2.6.21')
-rw-r--r-- | target/linux/generic-2.6/patches-2.6.21/100-netfilter_layer7_2.21.patch | 12 | ||||
-rw-r--r-- | target/linux/generic-2.6/patches-2.6.21/101-netfilter_layer7_pktmatch.patch | 10 |
2 files changed, 11 insertions, 11 deletions
diff --git a/target/linux/generic-2.6/patches-2.6.21/100-netfilter_layer7_2.21.patch b/target/linux/generic-2.6/patches-2.6.21/100-netfilter_layer7_2.21.patch index 16b5fa2f36..403b7d0e41 100644 --- a/target/linux/generic-2.6/patches-2.6.21/100-netfilter_layer7_2.21.patch +++ b/target/linux/generic-2.6/patches-2.6.21/100-netfilter_layer7_2.21.patch @@ -16,7 +16,7 @@ +#endif /* _XT_LAYER7_H */ --- a/include/net/netfilter/nf_conntrack.h +++ b/include/net/netfilter/nf_conntrack.h -@@ -128,6 +128,22 @@ +@@ -128,6 +128,22 @@ struct nf_conn u_int32_t secmark; #endif @@ -41,7 +41,7 @@ --- a/net/ipv4/netfilter/nf_conntrack_l3proto_ipv4_compat.c +++ b/net/ipv4/netfilter/nf_conntrack_l3proto_ipv4_compat.c -@@ -163,6 +163,12 @@ +@@ -163,6 +163,12 @@ static int ct_seq_show(struct seq_file * return -ENOSPC; #endif @@ -56,7 +56,7 @@ --- a/net/netfilter/Kconfig +++ b/net/netfilter/Kconfig -@@ -640,6 +640,27 @@ +@@ -640,6 +640,27 @@ config NETFILTER_XT_MATCH_STATE To compile it as a module, choose M here. If unsure, say N. @@ -86,7 +86,7 @@ depends on NETFILTER_XTABLES --- a/net/netfilter/Makefile +++ b/net/netfilter/Makefile -@@ -68,6 +68,7 @@ +@@ -68,6 +68,7 @@ obj-$(CONFIG_NETFILTER_XT_MATCH_QUOTA) + obj-$(CONFIG_NETFILTER_XT_MATCH_REALM) += xt_realm.o obj-$(CONFIG_NETFILTER_XT_MATCH_SCTP) += xt_sctp.o obj-$(CONFIG_NETFILTER_XT_MATCH_STATE) += xt_state.o @@ -96,7 +96,7 @@ obj-$(CONFIG_NETFILTER_XT_MATCH_TCPMSS) += xt_tcpmss.o --- a/net/netfilter/nf_conntrack_core.c +++ b/net/netfilter/nf_conntrack_core.c -@@ -352,6 +352,14 @@ +@@ -352,6 +352,14 @@ destroy_conntrack(struct nf_conntrack *n * too. */ nf_ct_remove_expectations(ct); @@ -113,7 +113,7 @@ BUG_ON(list_empty(&ct->tuplehash[IP_CT_DIR_ORIGINAL].list)); --- a/net/netfilter/nf_conntrack_standalone.c +++ b/net/netfilter/nf_conntrack_standalone.c -@@ -195,6 +195,11 @@ +@@ -195,6 +195,11 @@ static int ct_seq_show(struct seq_file * return -ENOSPC; #endif diff --git a/target/linux/generic-2.6/patches-2.6.21/101-netfilter_layer7_pktmatch.patch b/target/linux/generic-2.6/patches-2.6.21/101-netfilter_layer7_pktmatch.patch index cdadbe198a..d3129eed71 100644 --- a/target/linux/generic-2.6/patches-2.6.21/101-netfilter_layer7_pktmatch.patch +++ b/target/linux/generic-2.6/patches-2.6.21/101-netfilter_layer7_pktmatch.patch @@ -1,6 +1,6 @@ --- a/include/linux/netfilter/xt_layer7.h +++ b/include/linux/netfilter/xt_layer7.h -@@ -8,6 +8,7 @@ +@@ -8,6 +8,7 @@ struct xt_layer7_info { char protocol[MAX_PROTOCOL_LEN]; char invert:1; char pattern[MAX_PATTERN_LEN]; @@ -10,7 +10,7 @@ #endif /* _XT_LAYER7_H */ --- a/net/netfilter/xt_layer7.c +++ b/net/netfilter/xt_layer7.c -@@ -296,34 +296,36 @@ +@@ -296,34 +296,36 @@ static int match_no_append(struct nf_con } /* add the new app data to the conntrack. Return number of bytes added. */ @@ -61,7 +61,7 @@ return length; } -@@ -410,7 +412,7 @@ +@@ -410,7 +412,7 @@ match(const struct sk_buff *skbin, struct xt_layer7_info * info = (struct xt_layer7_info *)matchinfo; enum ip_conntrack_info master_ctinfo, ctinfo; struct nf_conn *master_conntrack, *conntrack; @@ -70,7 +70,7 @@ unsigned int pattern_result, appdatalen; regexp * comppattern; -@@ -438,8 +440,8 @@ +@@ -438,8 +440,8 @@ match(const struct sk_buff *skbin, master_conntrack = master_ct(master_conntrack); /* if we've classified it or seen too many packets */ @@ -81,7 +81,7 @@ pattern_result = match_no_append(conntrack, master_conntrack, ctinfo, master_ctinfo, info); -@@ -472,6 +474,25 @@ +@@ -472,6 +474,25 @@ match(const struct sk_buff *skbin, /* the return value gets checked later, when we're ready to use it */ comppattern = compile_and_cache(info->pattern, info->protocol); |