diff options
author | Elise Lennion <elise.lennion@gmail.com> | 2017-01-26 15:09:44 -0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2017-01-27 13:33:20 +0100 |
commit | d545778d5933ab20c1d9d34a44ae93b2668c60d2 (patch) | |
tree | 0682f07a04c864d14a355f344e661121624c89d4 /src/evaluate.c | |
parent | 0011985554e269e1cc8f8e5b41eb9dcd795ebe8c (diff) |
src: Allow reset single stateful object
Currently the stateful objects can only be reseted in groups. With this
patch reseting a single object is allowed:
$ nft reset counter filter https-traffic
table ip filter {
counter https-traffic {
packets 8774 bytes 542668
}
}
$ nft list counter filter https-traffic
table ip filter {
counter https-traffic {
packets 0 bytes 0
}
}
Heavily based on work from Pablo Neira Ayuso <pablo@netfilter.org>.
Signed-off-by: Elise Lennion <elise.lennion@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/evaluate.c')
-rw-r--r-- | src/evaluate.c | 26 |
1 files changed, 25 insertions, 1 deletions
diff --git a/src/evaluate.c b/src/evaluate.c index bcbced1e..1d2f9258 100644 --- a/src/evaluate.c +++ b/src/evaluate.c @@ -2949,6 +2949,29 @@ static int cmd_evaluate_list(struct eval_ctx *ctx, struct cmd *cmd) } } +static int cmd_evaluate_reset(struct eval_ctx *ctx, struct cmd *cmd) +{ + int ret; + + ret = cache_update(cmd->op, ctx->msgs); + if (ret < 0) + return ret; + + switch (cmd->obj) { + case CMD_OBJ_COUNTER: + case CMD_OBJ_QUOTA: + if (table_lookup(&cmd->handle) == NULL) + return cmd_error(ctx, "Could not process rule: Table '%s' does not exist", + cmd->handle.table); + return 0; + case CMD_OBJ_COUNTERS: + case CMD_OBJ_QUOTAS: + return 0; + default: + BUG("invalid command object type %u\n", cmd->obj); + } +} + static int cmd_evaluate_flush(struct eval_ctx *ctx, struct cmd *cmd) { int ret; @@ -3140,8 +3163,9 @@ int cmd_evaluate(struct eval_ctx *ctx, struct cmd *cmd) case CMD_DELETE: return cmd_evaluate_delete(ctx, cmd); case CMD_LIST: - case CMD_RESET: return cmd_evaluate_list(ctx, cmd); + case CMD_RESET: + return cmd_evaluate_reset(ctx, cmd); case CMD_FLUSH: return cmd_evaluate_flush(ctx, cmd); case CMD_RENAME: |