path: root/iptables/nft-shared.h
diff options
authorGiuseppe Longo <>2013-09-04 14:36:41 +0200
committerPablo Neira Ayuso <>2013-12-30 23:50:45 +0100
commit04d9ad94a40e795dfa8d4cfd0bf3f092d60ecc47 (patch)
treefd5d63459439b90c602b09c76d008668dcc26cdb /iptables/nft-shared.h
parenta69cc575295eedb44f0fa33cd5fcf1cc0114133a (diff)
nft: refactoring parse operations for more genericity
This allows to reuse the nft_parse_* function for the bridge and arp family (not yet supported). Signed-off-by: Giuseppe Longo <> Signed-off-by: Pablo Neira Ayuso <>
Diffstat (limited to 'iptables/nft-shared.h')
1 files changed, 4 insertions, 4 deletions
diff --git a/iptables/nft-shared.h b/iptables/nft-shared.h
index 861b6db2..ed2617cb 100644
--- a/iptables/nft-shared.h
+++ b/iptables/nft-shared.h
@@ -43,17 +43,17 @@ struct nft_family_ops {
void (*print_payload)(struct nft_rule_expr *e,
struct nft_rule_expr_iter *iter);
void (*parse_meta)(struct nft_rule_expr *e, uint8_t key,
- struct iptables_command_state *cs);
+ void *data);
void (*parse_payload)(struct nft_rule_expr_iter *iter,
- struct iptables_command_state *cs,
- uint32_t offset);
- void (*parse_immediate)(struct iptables_command_state *cs);
+ uint32_t offset, void *data);
+ void (*parse_immediate)(const char *jumpto, bool nft_goto, void *data);
void (*print_firewall)(struct nft_rule *r, unsigned int num,
unsigned int format);
uint8_t (*save_firewall)(const struct iptables_command_state *cs,
unsigned int format);
void (*post_parse)(int command, struct iptables_command_state *cs,
struct xtables_args *args);
+ void (*parse_target)(struct xtables_target *t, void *data);
void add_meta(struct nft_rule *r, uint32_t key);