]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b851ba4) | patch
src: allow filtering on L2 header in inet family
authorFlorian Westphal <fw@strlen.de>
Thu, 24 Sep 2015 20:38:06 +0000 (22:38 +0200)
committerFlorian Westphal <fw@strlen.de>
Fri, 6 Nov 2015 13:51:36 +0000 (14:51 +0100)
commit775e7ff1f5ddaa3208ea2c9178d9e5d8890d9739
treea599cc7782458e684cfd01f88b57b863c2128ea6tree | snapshot
parentb851ba4731d9f7c5e38889875a83173fcc4d3f16commit | diff
src: allow filtering on L2 header in inet family

Error: conflicting protocols specified: inet vs. ether
tcp dport 22 iiftype ether ether saddr 00:0f:54:0c:11:4
                                   ^^^^^^^^^^^

This allows the implicit inet proto dependency to get replaced
by an ethernet one.

This is possible since by the time we detect the conflict the
meta dependency for the network protocol has already been added.

So we only need to add another dependency on the Linklayer frame type.

Closes: http://bugzilla.netfilter.org/show_bug.cgi?id=981
Acked-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Florian Westphal <fw@strlen.de>
include/meta.h diff | blob | blame | history
src/evaluate.c diff | blob | blame | history
src/meta.c diff | blob | blame | history
src/payload.c diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables