diff options
author | Florian Westphal <fw@strlen.de> | 2015-09-24 22:38:06 +0200 |
---|---|---|
committer | Florian Westphal <fw@strlen.de> | 2015-11-06 14:51:36 +0100 |
commit | 775e7ff1f5ddaa3208ea2c9178d9e5d8890d9739 (patch) | |
tree | a599cc7782458e684cfd01f88b57b863c2128ea6 /include | |
parent | b851ba4731d9f7c5e38889875a83173fcc4d3f16 (diff) |
src: allow filtering on L2 header in inet family
Error: conflicting protocols specified: inet vs. ether
tcp dport 22 iiftype ether ether saddr 00:0f:54:0c:11:4
^^^^^^^^^^^
This allows the implicit inet proto dependency to get replaced
by an ethernet one.
This is possible since by the time we detect the conflict the
meta dependency for the network protocol has already been added.
So we only need to add another dependency on the Linklayer frame type.
Closes: http://bugzilla.netfilter.org/show_bug.cgi?id=981
Acked-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Florian Westphal <fw@strlen.de>
Diffstat (limited to 'include')
-rw-r--r-- | include/meta.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/include/meta.h b/include/meta.h index abe74ec0..f25b147a 100644 --- a/include/meta.h +++ b/include/meta.h @@ -26,6 +26,8 @@ struct meta_template { extern struct expr *meta_expr_alloc(const struct location *loc, enum nft_meta_keys key); +struct stmt *meta_stmt_meta_iiftype(const struct location *loc, uint16_t type); + const struct datatype ifindex_type; #endif /* NFTABLES_META_H */ |