diff options
author | Carlos Falgueras García <carlosfg@riseup.net> | 2016-08-17 16:07:09 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2016-08-17 16:08:06 +0200 |
commit | e35693fd13de771e1e047ffa4f799f72f1446e8d (patch) | |
tree | 4727255558de280341f39a3514c996ab92654cc4 /src/expr/exthdr.c | |
parent | 48a71a20420e307d0a1d8a89ac9fc7b46ec5a1ca (diff) |
src: Implement rule comparison
This patch implements the function:
bool nftnl_rule_cmp(const struct nftnl_rule *r1,
const struct nftnl_rule *r2)
for rule comparison.
Expressions within rules need to be compared, so also has been created the
function:
bool nftnl_expr_cmp(const struct nftnl_expr *e1,
const struct nftnl_expr *e2);
Also includes all expression comparators.
Signed-off-by: Carlos Falgueras García <carlosfg@riseup.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/expr/exthdr.c')
-rw-r--r-- | src/expr/exthdr.c | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/src/expr/exthdr.c b/src/expr/exthdr.c index 6489a48..deb0d7c 100644 --- a/src/expr/exthdr.c +++ b/src/expr/exthdr.c @@ -304,10 +304,30 @@ nftnl_expr_exthdr_snprintf(char *buf, size_t len, uint32_t type, return -1; } +static bool nftnl_expr_exthdr_cmp(const struct nftnl_expr *e1, + const struct nftnl_expr *e2) +{ + struct nftnl_expr_exthdr *h1 = nftnl_expr_data(e1); + struct nftnl_expr_exthdr *h2 = nftnl_expr_data(e2); + bool eq = true; + + if (e1->flags & (1 << NFTNL_EXPR_EXTHDR_DREG)) + eq &= (h1->dreg == h2->dreg); + if (e1->flags & (1 << NFTNL_EXPR_EXTHDR_OFFSET)) + eq &= (h1->offset == h2->offset); + if (e1->flags & (1 << NFTNL_EXPR_EXTHDR_LEN)) + eq &= (h1->len == h2->len); + if (e1->flags & (1 << NFTNL_EXPR_EXTHDR_TYPE)) + eq &= (h1->type == h2->type); + + return eq; +} + struct expr_ops expr_ops_exthdr = { .name = "exthdr", .alloc_len = sizeof(struct nftnl_expr_exthdr), .max_attr = NFTA_EXTHDR_MAX, + .cmp = nftnl_expr_exthdr_cmp, .set = nftnl_expr_exthdr_set, .get = nftnl_expr_exthdr_get, .parse = nftnl_expr_exthdr_parse, |