diff options
author | Brett Mastbergen <bmastbergen@untangle.com> | 2019-04-23 16:18:17 -0400 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2019-06-21 17:47:58 +0200 |
commit | 3587ad1e751576993b2d11391ee17b07b1d99075 (patch) | |
tree | 5c77cda888d26bf2b9a4262c87e0b873d5ceec19 | |
parent | fbbfbbe6e096d750af4a9b5e6eb321b1a8861b85 (diff) |
src: Add ct id support
The 'id' key returns the id of the connection entry
Signed-off-by: Brett Mastbergen <bmastbergen@untangle.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
-rw-r--r-- | include/linux/netfilter/nf_tables.h | 2 | ||||
-rw-r--r-- | src/expr/ct.c | 1 |
2 files changed, 3 insertions, 0 deletions
diff --git a/include/linux/netfilter/nf_tables.h b/include/linux/netfilter/nf_tables.h index 7eb8a5b..38f74e4 100644 --- a/include/linux/netfilter/nf_tables.h +++ b/include/linux/netfilter/nf_tables.h @@ -978,6 +978,7 @@ enum nft_osf_attributes { * @NFT_CT_SRC_IP6: conntrack layer 3 protocol source (IPv6 address) * @NFT_CT_DST_IP6: conntrack layer 3 protocol destination (IPv6 address) * @NFT_CT_TIMEOUT: connection tracking timeout policy assigned to conntrack + * @NFT_CT_ID: conntrack id */ enum nft_ct_keys { NFT_CT_STATE, @@ -1004,6 +1005,7 @@ enum nft_ct_keys { NFT_CT_SRC_IP6, NFT_CT_DST_IP6, NFT_CT_TIMEOUT, + NFT_CT_ID, __NFT_CT_MAX }; #define NFT_CT_MAX (__NFT_CT_MAX - 1) diff --git a/src/expr/ct.c b/src/expr/ct.c index b9ca2dc..124de9d 100644 --- a/src/expr/ct.c +++ b/src/expr/ct.c @@ -172,6 +172,7 @@ static const char *ctkey2str_array[NFT_CT_MAX + 1] = { [NFT_CT_DST_IP] = "dst_ip", [NFT_CT_SRC_IP6] = "src_ip6", [NFT_CT_DST_IP6] = "dst_ip6", + [NFT_CT_ID] = "id", }; static const char *ctkey2str(uint32_t ctkey) |