expr: socket: add wildcard support

Add missing NFT_SOCKET_WILDCARD definition. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2020-10-12 03:21:34 +0200
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2020-10-12 03:22:16 +0200
commit: 4bbe82df9cca976a3e7499af8434536d09582654 (patch)
tree: 3eb4de722019b707a29ff5f32708a6faca3c65fe
parent: 76b82c425818ee246ed1100997d6e2a09f07976f (diff)
2 files changed, 3 insertions, 0 deletions
diff --git a/include/linux/netfilter/nf_tables.h b/include/linux/netfilter/nf_tables.h
index 77d178a..e4cdf78 100644
--- a/include/linux/netfilter/nf_tables.h
+++ b/include/linux/netfilter/nf_tables.h
@@ -997,10 +997,12 @@ enum nft_socket_attributes {
  *
  * @NFT_SOCKET_TRANSPARENT: Value of the IP(V6)_TRANSPARENT socket option
  * @NFT_SOCKET_MARK: Value of the socket mark
+ * @NFT_SOCKET_WILDCARD: Whether the socket is zero-bound (e.g. 0.0.0.0 or ::0)
  */
 enum nft_socket_keys {
 	NFT_SOCKET_TRANSPARENT,
 	NFT_SOCKET_MARK,
+	NFT_SOCKET_WILDCARD,
 	__NFT_SOCKET_MAX
 };
 #define NFT_SOCKET_MAX	(__NFT_SOCKET_MAX - 1)
diff --git a/src/expr/socket.c b/src/expr/socket.c
index 96550d5..8cd4536 100644
--- a/src/expr/socket.c
+++ b/src/expr/socket.c
@@ -115,6 +115,7 @@ nftnl_expr_socket_parse(struct nftnl_expr *e, struct nlattr *attr)
 static const char *socket_key2str_array[NFT_SOCKET_MAX + 1] = {
 	[NFT_SOCKET_TRANSPARENT] = "transparent",
 	[NFT_SOCKET_MARK] = "mark",
+	[NFT_SOCKET_WILDCARD] = "wildcard",
 };
 
 static const char *socket_key2str(uint8_t key)
author	Pablo Neira Ayuso <pablo@netfilter.org>	2020-10-12 03:21:34 +0200
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2020-10-12 03:22:16 +0200
commit	4bbe82df9cca976a3e7499af8434536d09582654 (patch)
tree	3eb4de722019b707a29ff5f32708a6faca3c65fe
parent	76b82c425818ee246ed1100997d6e2a09f07976f (diff)