src: add support for CTA_SECCTX

This patch adds support for the new attribute CTA_SECCTX that supersedes CTA_SECMARK. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2010-12-18 20:18:49 +0100
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2011-01-16 22:32:40 +0100
commit: fdda1474cc8654430f245b7f01c30e8ff171fa60 (patch)
tree: e9d4a4f3d5a45677c49079aefa13e70541db7f8d /src/conntrack/copy.c
parent: f1456fa807f20bf8dd73ab3ae3312c2e8187f89f (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/src/conntrack/copy.c b/src/conntrack/copy.c
index 8d8a6b7..9148640 100644
--- a/src/conntrack/copy.c
+++ b/src/conntrack/copy.c
@@ -415,6 +415,14 @@ static void copy_attr_zone(struct nf_conntrack *dest,
 	dest->zone = orig->zone;
 }
 
+static void copy_attr_secctx(struct nf_conntrack *dest,
+			     const struct nf_conntrack *orig)
+{
+	if (dest->secctx)
+		free(dest->secctx);
+	dest->secctx = strdup(orig->secctx);
+}
+
 const copy_attr copy_attr_array[ATTR_MAX] = {
 	[ATTR_ORIG_IPV4_SRC]		= copy_attr_orig_ipv4_src,
 	[ATTR_ORIG_IPV4_DST] 		= copy_attr_orig_ipv4_dst,
@@ -478,4 +486,5 @@ const copy_attr copy_attr_array[ATTR_MAX] = {
 	[ATTR_TCP_WSCALE_ORIG]		= copy_attr_tcp_wscale_orig,
 	[ATTR_TCP_WSCALE_REPL]		= copy_attr_tcp_wscale_repl,
 	[ATTR_ZONE]			= copy_attr_zone,
+	[ATTR_SECCTX]			= copy_attr_secctx,
 };
author	Pablo Neira Ayuso <pablo@netfilter.org>	2010-12-18 20:18:49 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2011-01-16 22:32:40 +0100
commit	fdda1474cc8654430f245b7f01c30e8ff171fa60 (patch)
tree	e9d4a4f3d5a45677c49079aefa13e70541db7f8d /src/conntrack/copy.c
parent	f1456fa807f20bf8dd73ab3ae3312c2e8187f89f (diff)