summaryrefslogtreecommitdiffstats
path: root/src/conntrack/api.c
diff options
context:
space:
mode:
authorPablo Neira Ayuso <pablo@netfilter.org>2010-12-18 20:18:49 +0100
committerPablo Neira Ayuso <pablo@netfilter.org>2011-01-16 22:32:40 +0100
commitfdda1474cc8654430f245b7f01c30e8ff171fa60 (patch)
treee9d4a4f3d5a45677c49079aefa13e70541db7f8d /src/conntrack/api.c
parentf1456fa807f20bf8dd73ab3ae3312c2e8187f89f (diff)
src: add support for CTA_SECCTX
This patch adds support for the new attribute CTA_SECCTX that supersedes CTA_SECMARK. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/conntrack/api.c')
-rw-r--r--src/conntrack/api.c3
1 files changed, 3 insertions, 0 deletions
diff --git a/src/conntrack/api.c b/src/conntrack/api.c
index 7a5767b..8e5b2fe 100644
--- a/src/conntrack/api.c
+++ b/src/conntrack/api.c
@@ -90,6 +90,8 @@ void nfct_destroy(struct nf_conntrack *ct)
{
assert(ct != NULL);
free(ct);
+ if (ct->secctx)
+ free(ct->secctx);
ct = NULL; /* bugtrap */
}
@@ -353,6 +355,7 @@ void nfct_callback_unregister2(struct nfct_handle *h)
* - ATTR_USE
* - ATTR_ID
* - ATTR_*_COUNTER_*
+ * - ATTR_SECCTX
* The call of this function for such attributes do nothing.
*/
void nfct_set_attr(struct nf_conntrack *ct,