diff options
| author | Florian Westphal <fw@strlen.de> | 2021-12-20 12:30:18 +0100 |
|---|---|---|
| committer | Florian Westphal <fw@strlen.de> | 2022-02-28 22:44:51 +0100 |
| commit | 5d837d270d5a8b3a4d3fdca12d0f0800b8287cdd (patch) | |
| tree | f6142e001404eaca518ef39eec73b7d1372dd82b /src/evaluate.c | |
| parent | 1d507ce7f1d3c12481ee24bd1dcac2fc1984ee9f (diff) | |
src: add tcp option reset support
This allows to replace a tcp option with nops, similar
to the TCPOPTSTRIP feature of iptables.
Signed-off-by: Florian Westphal <fw@strlen.de>
Diffstat (limited to 'src/evaluate.c')
| -rw-r--r-- | src/evaluate.c | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/src/evaluate.c b/src/evaluate.c index 437eacb8..2732f5f4 100644 --- a/src/evaluate.c +++ b/src/evaluate.c @@ -3448,6 +3448,11 @@ static int stmt_evaluate_chain(struct eval_ctx *ctx, struct stmt *stmt) return 0; } +static int stmt_evaluate_optstrip(struct eval_ctx *ctx, struct stmt *stmt) +{ + return expr_evaluate(ctx, &stmt->optstrip.expr); +} + static int stmt_evaluate_dup(struct eval_ctx *ctx, struct stmt *stmt) { int err; @@ -3857,6 +3862,8 @@ int stmt_evaluate(struct eval_ctx *ctx, struct stmt *stmt) return stmt_evaluate_synproxy(ctx, stmt); case STMT_CHAIN: return stmt_evaluate_chain(ctx, stmt); + case STMT_OPTSTRIP: + return stmt_evaluate_optstrip(ctx, stmt); default: BUG("unknown statement type %s\n", stmt->ops->name); } |