From f4621a6f870644af934869d52bf24137c76910db Mon Sep 17 00:00:00 2001 From: Florian Westphal Date: Wed, 5 Sep 2018 11:16:41 +0200 Subject: expr: add xfrm support MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Joint work with Máté Eckl. Signed-off-by: Florian Westphal Acked-by: Pablo Neira Ayuso --- include/libnftnl/expr.h | 8 ++++++++ include/linux/netfilter/nf_tables.h | 29 +++++++++++++++++++++++++++++ 2 files changed, 37 insertions(+) (limited to 'include') diff --git a/include/libnftnl/expr.h b/include/libnftnl/expr.h index b0a0a85..6285c6f 100644 --- a/include/libnftnl/expr.h +++ b/include/libnftnl/expr.h @@ -283,6 +283,14 @@ enum { NFTNL_EXPR_OSF_DREG = NFTNL_EXPR_BASE, }; +enum { + NFTNL_EXPR_XFRM_DREG = NFTNL_EXPR_BASE, + NFTNL_EXPR_XFRM_SREG, + NFTNL_EXPR_XFRM_KEY, + NFTNL_EXPR_XFRM_DIR, + NFTNL_EXPR_XFRM_SPNUM, +}; + #ifdef __cplusplus } /* extern "C" */ #endif diff --git a/include/linux/netfilter/nf_tables.h b/include/linux/netfilter/nf_tables.h index da2dda9..da2c291 100644 --- a/include/linux/netfilter/nf_tables.h +++ b/include/linux/netfilter/nf_tables.h @@ -1495,6 +1495,35 @@ enum nft_devices_attributes { }; #define NFTA_DEVICE_MAX (__NFTA_DEVICE_MAX - 1) +/* + * enum nft_xfrm_attributes - nf_tables xfrm expr netlink attributes + * + * @NFTA_XFRM_DREG: destination register (NLA_U32) + * @NFTA_XFRM_KEY: enum nft_xfrm_keys (NLA_U32) + * @NFTA_XFRM_DIR: direction (NLA_U8) + * @NFTA_XFRM_SPNUM: index in secpath array (NLA_U32) + */ +enum nft_xfrm_attributes { + NFTA_XFRM_UNSPEC, + NFTA_XFRM_DREG, + NFTA_XFRM_KEY, + NFTA_XFRM_DIR, + NFTA_XFRM_SPNUM, + __NFTA_XFRM_MAX +}; +#define NFTA_XFRM_MAX (__NFTA_XFRM_MAX - 1) + +enum nft_xfrm_keys { + NFT_XFRM_KEY_UNSPEC, + NFT_XFRM_KEY_DADDR_IP4, + NFT_XFRM_KEY_DADDR_IP6, + NFT_XFRM_KEY_SADDR_IP4, + NFT_XFRM_KEY_SADDR_IP6, + NFT_XFRM_KEY_REQID, + NFT_XFRM_KEY_SPI, + __NFT_XFRM_KEY_MAX, +}; +#define NFT_XFRM_KEY_MAX (__NFT_XFRM_KEY_MAX - 1) /** * enum nft_trace_attributes - nf_tables trace netlink attributes -- cgit v1.2.3