site_archiver@lists.apple.com Delivered-To: Darwin-kernel@lists.apple.com Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:mime-version:content-type:content-transfer-encoding :content-disposition; bh=rE54a/0Zsp2VLEja9gfDOtCnkNMhCdoRZxqZLrVOHgk=; b=A0xi18rTekMT9GkmknyAprTQMSvy8X5Q60rd02FaMJ/yNSXCt1vhJEHTRryGA9Ab+c ndIhJEFi6D6//DmZQp3QWyM88p82CtRTiYaKqlfcyy7ZC9hrJLn/76hFCAImMmrEwLhD QfMPoweA++haKMX3DCr0BTAb19GOHDgA1VkiE= Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type :content-transfer-encoding:content-disposition; b=pq/dHne5NNI1PhGBFZCaa+if4LOizADs5CbKV8bkoSfyZbNT34f/kaNMqKz0rMr1FE pr7wUHOS36mlTzUpzaDkh23TG0KRNfZ50iGczCAqZa+KF4Z9otej5f0yG7S73QoMxOJP rDQLYdhfH3UKiRnNy/s4yiaIVaiWdf+kzPBIs= Hi, I'm having trouble with my IP (v4) ipf_input_func. It registers properly and works fine through my initialization code, but the data argument is confusing, as well as the offset one. The documentation says data (which is a mbuf_t pointer, aka struct __mbuf **) points at start of data with the IP header. My code only inspects TCP packets, checking the protocol argument and ignoring the packet (returning zero immediately) if it's not IPPROTO_TCP. The problem arises when I try to read the tcphdr structure from the data argument. The documentation again says that I should read data+offset, and doing so yields unconsistent results. Source and destination ports are incorrect after converting them back to host native endianness (little endian here, thus using ntohs()) and the whole structure seems to be incorrect, which makes me think I'm reading a wrong location. I tested with UDP packets and it's the same situation. What information is contained in reality within the data argument? Does the offset argument count the IP header itself too? For example: struct udphdr *udphdr = (struct udphdr *) (data + offset); struct tcphdr *tcphdr = (struct tcphdr *) (data + offset); The IP filter function arguments: (void *cookie, mbuf_t *data, int offset, u_int8_t protocol) Thanks in advance. John. _______________________________________________ Do not post admin requests to the list. They will be ignored. Darwin-kernel mailing list (Darwin-kernel@lists.apple.com) Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/darwin-kernel/site_archiver%40lists.a... This email sent to site_archiver@lists.apple.com