]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4248f79) | patch
netfilter: nf_tables: add xfrm expression
authorFlorian Westphal <fw@strlen.de>
Mon, 3 Sep 2018 16:09:40 +0000 (18:09 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 17 Sep 2018 09:40:08 +0000 (11:40 +0200)
commit2cb3c7fbb5e4aa1557e7ca568e3f3ec8d9969886
treed74409b815de73b670c981d1450501531beee1a2tree | snapshot
parent4248f7908445c04a26ca285879239f996c679b9acommit | diff
netfilter: nf_tables: add xfrm expression

supports fetching saddr/daddr of tunnel mode states, request id and spi.
If direction is 'in', use inbound skb secpath, else dst->xfrm.

Joint work with Máté Eckl.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/uapi/linux/netfilter/nf_tables.h diff | blob | history
net/netfilter/Kconfig diff | blob | history
net/netfilter/Makefile diff | blob | history
net/netfilter/nft_xfrm.c [new file with mode: 0644] blob
Linux Kernel Source Tree.