Extend high-level API for netlink BSF to add negative logic

This patch introduces nfct_filter_set_logic() to set the filtering logic which results in a more flexible solution. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2008-07-18 14:36:06 +0200
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2008-07-18 14:36:06 +0200
commit: d65c9ce404a5a3dc4de220189daaf610f4ec306e (patch)
tree: d86743cc793c33231b051dd1b97dfa8b77c92bbb /include/libnetfilter_conntrack/libnetfilter_conntrack.h
parent: 563114a47ae03c988ca0e66eddda33d485e35f6b (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/include/libnetfilter_conntrack/libnetfilter_conntrack.h b/include/libnetfilter_conntrack/libnetfilter_conntrack.h
index 328cf8b..9840f90 100644
--- a/include/libnetfilter_conntrack/libnetfilter_conntrack.h
+++ b/include/libnetfilter_conntrack/libnetfilter_conntrack.h
@@ -356,6 +356,16 @@ extern void nfct_filter_add_attr_u32(struct nfct_filter *filter,
 				     const enum nfct_filter_attr attr,
 				     const u_int32_t value);
 
+enum nfct_filter_logic {
+	NFCT_FILTER_LOGIC_POSITIVE,
+	NFCT_FILTER_LOGIC_NEGATIVE,
+	NFCT_FILTER_LOGIC_MAX
+};
+
+extern int nfct_filter_set_logic(struct nfct_filter *filter,
+				 const enum nfct_filter_attr attr,
+				 const enum nfct_filter_logic logic);
+
 extern int nfct_filter_attach(int fd, struct nfct_filter *filter);
 extern int nfct_filter_detach(int fd);
author	Pablo Neira Ayuso <pablo@netfilter.org>	2008-07-18 14:36:06 +0200
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2008-07-18 14:36:06 +0200
commit	d65c9ce404a5a3dc4de220189daaf610f4ec306e (patch)
tree	d86743cc793c33231b051dd1b97dfa8b77c92bbb /include/libnetfilter_conntrack/libnetfilter_conntrack.h
parent	563114a47ae03c988ca0e66eddda33d485e35f6b (diff)