problem regarding new LSM hook

From: umesh chandak
Date: Sun Sep 25 2005 - 02:41:43 EST

Next message: Sam Ravnborg: "Re: patching kgdb to linux"
Previous message: Nick Piggin: "Re: [PATCH linux-2.6 01/04] brsem: implement big reader semaphore"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello sir,

I am using madwifi v1.5 driver with linksys pci
adapter.

I have written a lsm hook for netif_rx(struct sk_buff
*skb) in security.h file.
I have called that hook from netif_rx fuction (after
variable declaration) in net/core/dev.c .

Then I have written module for that hook.In that
module, I have dropped Icmp packets. But in Wireless
network ,When i ping machine "B" from machine "A" ,i
am getting the message on console like this
64 bytes from machine "B" ip addr :icmp_seq=no
......
but this should not happen because i am dropping
incoming Icmp packets in my module.
Can you tell me why this is happening.What i have made
wrong .

Note : 1)My module is working proper and i have
also
freed the skb buffer.
2)It work fine for wired network.
3)Ethereal shows the correct result (does not
capture ICMP reply packets)
for both wired and wireless network.

-Plz help me.We are trying
this from 6 days .
thanks in advance
-Rishi

______________________________________________________
Yahoo! for Good
Donate to the Hurricane Katrina relief effort.
http://store.yahoo.com/redcross-donate3/

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Sam Ravnborg: "Re: patching kgdb to linux"
Previous message: Nick Piggin: "Re: [PATCH linux-2.6 01/04] brsem: implement big reader semaphore"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]