]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: da16c65) | patch
netfilter: nf_tables: add flag to indicate set contains expressions
authorPatrick McHardy <kaber@trash.net>
Sat, 11 Apr 2015 09:46:41 +0000 (10:46 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 13 Apr 2015 18:12:32 +0000 (20:12 +0200)
commit2466cdbadd8a68ae8ca49f021d8926edae338ac9
tree40afe68a6cd068af4e5102ec4989e57dbfe3e762tree | snapshot
parentda16c6522266d92923066c4739ce6812740a9eb8commit | diff
netfilter: nf_tables: add flag to indicate set contains expressions

Add a set flag to indicate that the set is used as a state table and
contains expressions for evaluation. This operation is mutually
exclusive with the mapping operation, so sets specifying both are
rejected. The lookup expression also rejects binding to state tables
since it only deals with loopup and map operations.

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/uapi/linux/netfilter/nf_tables.h diff | blob | history
net/netfilter/nf_tables_api.c diff | blob | history
net/netfilter/nft_lookup.c diff | blob | history
Linux Kernel Source Tree.