diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-03-13 18:44:11 +0100 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-03-24 21:37:32 +0100 |
commit | 2edc7ccd872c60f4a71218e34e737655d6e50efa (patch) | |
tree | 4294844e1e3f7b81f907f618ea09943552878b09 /include | |
parent | e870432649955d377a73ee5a72cb23f0f6b5e4c5 (diff) |
conntrack: add synproxy support
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include')
-rw-r--r-- | include/internal/object.h | 6 | ||||
-rw-r--r-- | include/libnetfilter_conntrack/libnetfilter_conntrack.h | 3 | ||||
-rw-r--r-- | include/libnetfilter_conntrack/linux_nfnetlink_conntrack.h | 10 |
3 files changed, 19 insertions, 0 deletions
diff --git a/include/internal/object.h b/include/internal/object.h index bb14dc8..3f6904f 100644 --- a/include/internal/object.h +++ b/include/internal/object.h @@ -189,6 +189,12 @@ struct nf_conntrack { uint64_t stop; } timestamp; + struct { + uint32_t isn; + uint32_t its; + uint32_t tsoff; + } synproxy; + void *helper_info; size_t helper_info_len; diff --git a/include/libnetfilter_conntrack/libnetfilter_conntrack.h b/include/libnetfilter_conntrack/libnetfilter_conntrack.h index b8d458c..c5c6b61 100644 --- a/include/libnetfilter_conntrack/libnetfilter_conntrack.h +++ b/include/libnetfilter_conntrack/libnetfilter_conntrack.h @@ -141,6 +141,9 @@ enum nf_conntrack_attr { ATTR_REPL_ZONE, /* u16 bits */ ATTR_SNAT_IPV6, /* u128 bits */ ATTR_DNAT_IPV6, /* u128 bits */ + ATTR_SYNPROXY_ISN, /* u32 bits */ + ATTR_SYNPROXY_ITS, /* u32 bits */ + ATTR_SYNPROXY_TSOFF, /* u32 bits */ ATTR_MAX }; diff --git a/include/libnetfilter_conntrack/linux_nfnetlink_conntrack.h b/include/libnetfilter_conntrack/linux_nfnetlink_conntrack.h index f1f50b7..aa45723 100644 --- a/include/libnetfilter_conntrack/linux_nfnetlink_conntrack.h +++ b/include/libnetfilter_conntrack/linux_nfnetlink_conntrack.h @@ -57,6 +57,7 @@ enum ctattr_type { CTA_MARK_MASK, CTA_LABELS, CTA_LABELS_MASK, + CTA_SYNPROXY, __CTA_MAX }; #define CTA_MAX (__CTA_MAX - 1) @@ -190,6 +191,15 @@ enum ctattr_natseq { }; #define CTA_NAT_SEQ_MAX (__CTA_NAT_SEQ_MAX - 1) +enum ctattr_synproxy { + CTA_SYNPROXY_UNSPEC, + CTA_SYNPROXY_ISN, + CTA_SYNPROXY_ITS, + CTA_SYNPROXY_TSOFF, + __CTA_SYNPROXY_MAX, +}; +#define CTA_SYNPROXY_MAX (__CTA_SYNPROXY_MAX - 1) + enum ctattr_expect { CTA_EXPECT_UNSPEC, CTA_EXPECT_MASTER, |