projects / firefly-linux-kernel-4.4.55.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d8bcc76) | patch
netfilter: nf_tables: nft_meta module get/set ops
authorArturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Thu, 26 Dec 2013 15:38:01 +0000 (16:38 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Sat, 28 Dec 2013 13:02:12 +0000 (14:02 +0100)
commite035b77ac7be430a5fef8c9c23f60b6b50ec81c5
tree39b4b80d82ab6a19d394c6ac529f1765230c463btree | snapshot
parentd8bcc768c80e73cf4e948cb327949174b4b5b9e7commit | diff
netfilter: nf_tables: nft_meta module get/set ops

This patch adds kernel support for the meta expression in get/set
flavour. The set operation indicates that a given packet has to be
set with a property, currently one of mark, priority, nftrace.
The get op is what was currently working: evaluate the given
packet property.

In the nftrace case, the value is always 1. Such behaviour is copied
from net/netfilter/xt_TRACE.c

The NFTA_META_DREG and NFTA_META_SREG attributes are mutually
exclusives.

Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/uapi/linux/netfilter/nf_tables.h diff | blob | history
net/netfilter/nft_meta.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.