diff options
author | Carlos Falgueras García <carlosfg@riseup.net> | 2016-08-17 16:07:09 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2016-08-17 16:08:06 +0200 |
commit | e35693fd13de771e1e047ffa4f799f72f1446e8d (patch) | |
tree | 4727255558de280341f39a3514c996ab92654cc4 /src/expr/ct.c | |
parent | 48a71a20420e307d0a1d8a89ac9fc7b46ec5a1ca (diff) |
src: Implement rule comparison
This patch implements the function:
bool nftnl_rule_cmp(const struct nftnl_rule *r1,
const struct nftnl_rule *r2)
for rule comparison.
Expressions within rules need to be compared, so also has been created the
function:
bool nftnl_expr_cmp(const struct nftnl_expr *e1,
const struct nftnl_expr *e2);
Also includes all expression comparators.
Signed-off-by: Carlos Falgueras García <carlosfg@riseup.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/expr/ct.c')
-rw-r--r-- | src/expr/ct.c | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/src/expr/ct.c b/src/expr/ct.c index 1a53b49..0137891 100644 --- a/src/expr/ct.c +++ b/src/expr/ct.c @@ -373,10 +373,30 @@ nftnl_expr_ct_snprintf(char *buf, size_t len, uint32_t type, return -1; } +static bool nftnl_expr_ct_cmp(const struct nftnl_expr *e1, + const struct nftnl_expr *e2) +{ + struct nftnl_expr_ct *c1 = nftnl_expr_data(e1); + struct nftnl_expr_ct *c2 = nftnl_expr_data(e2); + bool eq = true; + + if (e1->flags & (1 << NFTNL_EXPR_CT_KEY)) + eq &= (c1->key == c2->key); + if (e1->flags & (1 << NFTNL_EXPR_CT_DREG)) + eq &= (c1->dreg == c2->dreg); + if (e1->flags & (1 << NFTNL_EXPR_CT_SREG)) + eq &= (c1->sreg == c2->sreg); + if (e1->flags & (1 << NFTNL_EXPR_CT_DIR)) + eq &= (c1->dir == c2->dir); + + return eq; +} + struct expr_ops expr_ops_ct = { .name = "ct", .alloc_len = sizeof(struct nftnl_expr_ct), .max_attr = NFTA_CT_MAX, + .cmp = nftnl_expr_ct_cmp, .set = nftnl_expr_ct_set, .get = nftnl_expr_ct_get, .parse = nftnl_expr_ct_parse, |