projects / cascardo / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f25ad2e) | patch
netfilter: nf_tables: mark stateful expressions
authorPatrick McHardy <kaber@trash.net>
Sat, 11 Apr 2015 09:46:40 +0000 (10:46 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 13 Apr 2015 18:12:31 +0000 (20:12 +0200)
commit151d799a61da1b6f6b7e5116fb776177917bbe9a
treec9080e0cc8e06e85c42cd5948b7bce4de9cf35b8tree | snapshot
parentf25ad2e907f110378159fe5e088aa13176faaa5bcommit | diff
netfilter: nf_tables: mark stateful expressions

Add a flag to mark stateful expressions.

This is used for dynamic expression instanstiation to limit the usable
expressions. Strictly speaking only the dynset expression can not be
used in order to avoid recursion, but since dynamically instantiating
non-stateful expressions will simply create an identical copy, which
behaves no differently than the original, this limits to expressions
where it actually makes sense to dynamically instantiate them.

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/net/netfilter/nf_tables.h diff | blob | history
net/netfilter/nft_counter.c diff | blob | history
net/netfilter/nft_limit.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.