From d2a13436aa3029333d4352e7bcddf956735ec0a8 Mon Sep 17 00:00:00 2001
From: Pablo Neira Ayuso <pablo@netfilter.org>
Date: Thu, 18 Aug 2016 18:51:28 +0200
Subject: expr: add quota expression

This patch adds support for the new quota expression.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
---
 include/libnftnl/expr.h             |  5 +++++
 include/linux/netfilter/nf_tables.h | 19 +++++++++++++++++++
 2 files changed, 24 insertions(+)

(limited to 'include')

diff --git a/include/libnftnl/expr.h b/include/libnftnl/expr.h
index 5dd5e10..663cbf3 100644
--- a/include/libnftnl/expr.h
+++ b/include/libnftnl/expr.h
@@ -172,6 +172,11 @@ enum {
 	NFTNL_EXPR_QUEUE_FLAGS,
 };
 
+enum {
+	NFTNL_EXPR_QUOTA_BYTES	= NFTNL_EXPR_BASE,
+	NFTNL_EXPR_QUOTA_FLAGS,
+};
+
 enum {
 	NFTNL_EXPR_MASQ_FLAGS		= NFTNL_EXPR_BASE,
 	NFTNL_EXPR_MASQ_REG_PROTO_MIN,
diff --git a/include/linux/netfilter/nf_tables.h b/include/linux/netfilter/nf_tables.h
index fcf9a39..6390d6e 100644
--- a/include/linux/netfilter/nf_tables.h
+++ b/include/linux/netfilter/nf_tables.h
@@ -880,6 +880,25 @@ enum nft_queue_attributes {
 #define NFT_QUEUE_FLAG_CPU_FANOUT	0x02 /* use current CPU (no hashing) */
 #define NFT_QUEUE_FLAG_MASK		0x03
 
+enum nft_quota_flags {
+	NFT_QUOTA_F_INV	= (1 << 0),
+};
+
+/**
+ * enum nft_quota_attributes - nf_tables quota expression netlink attributes
+ *
+ * @NFTA_QUOTA_BYTES: quota in bytes (NLA_U16)
+ * @NFTA_QUOTA_FLAGS: flags (NLA_U32)
+ */
+enum nft_quota_attributes {
+	NFTA_QUOTA_UNSPEC,
+	NFTA_QUOTA_BYTES,
+	NFTA_QUOTA_FLAGS,
+	NFTA_QUOTA_PAD,
+	__NFTA_QUOTA_MAX
+};
+#define NFTA_QUOTA_MAX		(__NFTA_QUOTA_MAX - 1)
+
 /**
  * enum nft_reject_types - nf_tables reject expression reject types
  *
-- 
cgit v1.2.3