src: add dynamic flag and use it

author Pablo Neira Ayuso <pablo@netfilter.org>

Mon, 11 Jun 2018 15:19:20 +0000 (17:19 +0200)

committer Pablo Neira Ayuso <pablo@netfilter.org>

Tue, 12 Jun 2018 17:37:38 +0000 (19:37 +0200)
author Pablo Neira Ayuso <pablo@netfilter.org>
Mon, 11 Jun 2018 15:19:20 +0000 (17:19 +0200)
committer Pablo Neira Ayuso <pablo@netfilter.org>
Tue, 12 Jun 2018 17:37:38 +0000 (19:37 +0200)
diff --git a/src/parser_bison.y b/src/parser_bison.y

index 33915ed8702a6809fb03bccc7084b46d4def241f..98bfebadefcf09768a24b1b332b3591b6e5906ad 100644 (file)
--- a/src/parser_bison.y
+++ b/src/parser_bison.y
@@ -242,6 +242,7 @@ int nft_lex(void *, void *, void *);
  
  %token CONSTANT                        "constant"
  %token INTERVAL                        "interval"
+%token DYNAMIC                 "dynamic"
  %token AUTOMERGE               "auto-merge"
  %token TIMEOUT                 "timeout"
  %token GC_INTERVAL             "gc-interval"
@@ -1541,6 +1542,7 @@ set_flag_list             :       set_flag_list   COMMA           set_flag
  set_flag               :       CONSTANT        { $$ = NFT_SET_CONSTANT; }
                         |       INTERVAL        { $$ = NFT_SET_INTERVAL; }
                         |       TIMEOUT         { $$ = NFT_SET_TIMEOUT; }
+                       |       DYNAMIC         { $$ = NFT_SET_EVAL; }
                         ;
  
  map_block_alloc                :       /* empty */
diff --git a/src/scanner.l b/src/scanner.l

index 416bd27af1427cc853920688fdf79802f439b125..657fa2daa1f28eb141f3ae8703201f846f55ff81 100644 (file)
--- a/src/scanner.l
+++ b/src/scanner.l
@@ -293,6 +293,7 @@ addrstring  ({macaddr}|{ip4addr}|{ip6addr})
  
  "constant"             { return CONSTANT; }
  "interval"             { return INTERVAL; }
+"dynamic"              { return DYNAMIC; }
  "auto-merge"           { return AUTOMERGE; }
  "timeout"              { return TIMEOUT; }
  "gc-interval"          { return GC_INTERVAL; }
diff --git a/tests/shell/testcases/sets/0028autoselect_0 b/tests/shell/testcases/sets/0028autoselect_0

index 711743378e85877130e12f10d8441ca31503379d..23f43a22e7375ebb99026cac007be1d79dd885f1 100755 (executable)
--- a/tests/shell/testcases/sets/0028autoselect_0
+++ b/tests/shell/testcases/sets/0028autoselect_0
@@ -7,9 +7,9 @@
  set -e
  
  $NFT add table t
-$NFT add set t s1 { type inet_proto \; }
-$NFT add set t s2 { type ipv4_addr \; }
-$NFT add set t s3 { type ipv4_addr \; size 1024\; }
+$NFT add set t s1 { type inet_proto \; flags dynamic \; }
+$NFT add set t s2 { type ipv4_addr \; flags dynamic \; }
+$NFT add set t s3 { type ipv4_addr \; size 1024\; flags dynamic \; }
  $NFT add chain t c {type filter hook input priority 0 \; }
  
  $NFT add rule t c meta iifname foobar add @s1 { ip protocol }
diff --git a/tests/shell/testcases/sets/0031set_timeout_size_0 b/tests/shell/testcases/sets/0031set_timeout_size_0

index f1d9aa6006e58e355f39d332e063daa261218768..9edd5f6ffdea69db6bc2cc0828a6ab0ad803ec41 100755 (executable)
--- a/tests/shell/testcases/sets/0031set_timeout_size_0
+++ b/tests/shell/testcases/sets/0031set_timeout_size_0
@@ -1,7 +1,7 @@
  #!/bin/bash
  
  RULESET="add table x
-add set x y { type ipv4_addr; size 128; timeout 30s; }
+add set x y { type ipv4_addr; size 128; timeout 30s; flags dynamic; }
  add chain x test
  add rule x test set update ip saddr timeout 1d2h3m4s8ms @y
  add rule x test set update ip daddr timeout 100ms @y"
author	Pablo Neira Ayuso <pablo@netfilter.org>
	Mon, 11 Jun 2018 15:19:20 +0000 (17:19 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Tue, 12 Jun 2018 17:37:38 +0000 (19:37 +0200)
src/parser_bison.y		patch \| blob \| blame \| history
src/scanner.l		patch \| blob \| blame \| history
tests/shell/testcases/sets/0028autoselect_0		patch \| blob \| blame \| history
tests/shell/testcases/sets/0031set_timeout_size_0		patch \| blob \| blame \| history