]> git.ipfire.org Git - thirdparty/libnftnl.git/commitdiff
projects / thirdparty / libnftnl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 0ed132b)
meta: secpath support
authorFlorian Westphal <fw@strlen.de>
Fri, 1 Dec 2017 12:40:20 +0000 (13:40 +0100)
committerFlorian Westphal <fw@strlen.de>
Tue, 16 Jan 2018 14:56:38 +0000 (15:56 +0100)
Signed-off-by: Florian Westphal <fw@strlen.de>
include/linux/netfilter/nf_tables.h patch | blob | blame | history
src/expr/meta.c patch | blob | blame | history

diff --git a/include/linux/netfilter/nf_tables.h b/include/linux/netfilter/nf_tables.h
index 874fa3f239eba6d09d2908273402209d6f61b928..64d4a25f8409a0fdef199da8b806b897b486a5a1 100644 (file)
--- a/include/linux/netfilter/nf_tables.h
+++ b/include/linux/netfilter/nf_tables.h
@@ -775,6 +775,7 @@ enum nft_exthdr_attributes {
  * @NFT_META_OIFGROUP: packet output interface group
  * @NFT_META_CGROUP: socket control group (skb->sk->sk_classid)
  * @NFT_META_PRANDOM: a 32bit pseudo-random number
+ * @NFT_META_SECPATH: boolean, secpath_exists (!!skb->sp)
  */
 enum nft_meta_keys {
        NFT_META_LEN,
@@ -802,6 +803,7 @@ enum nft_meta_keys {
        NFT_META_OIFGROUP,
        NFT_META_CGROUP,
        NFT_META_PRANDOM,
+       NFT_META_SECPATH,
 };
 
 /**
diff --git a/src/expr/meta.c b/src/expr/meta.c
index 2c758412bf2e3f1791636628a7c9f1693eed7cad..de82105de44ff570f5d27f8b3023afbdcbeb109c 100644 (file)
--- a/src/expr/meta.c
+++ b/src/expr/meta.c
@@ -22,7 +22,7 @@
 #include <libnftnl/rule.h>
 
 #ifndef NFT_META_MAX
-#define NFT_META_MAX (NFT_META_PRANDOM + 1)
+#define NFT_META_MAX (NFT_META_SECPATH + 1)
 #endif
 
 struct nftnl_expr_meta {
@@ -158,6 +158,7 @@ static const char *meta_key2str_array[NFT_META_MAX] = {
        [NFT_META_OIFGROUP]     = "oifgroup",
        [NFT_META_CGROUP]       = "cgroup",
        [NFT_META_PRANDOM]      = "prandom",
+       [NFT_META_SECPATH]      = "secpath",
 };
 
 static const char *meta_key2str(uint8_t key)
Mirror of https://git.netfilter.org/libnftnl