diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-10-24 17:37:47 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-10-29 15:07:34 +0100 |
commit | a42d2865bc7e96fe63276e22acd523d996aaf0a4 (patch) | |
tree | b0779465bba8cf7562628ae884278fed73963362 /include/nftables.h | |
parent | f27fc14cbd3097e98c4d3549ff93c9284134b866 (diff) |
src: Revert --literal, add -S/--service
This is a partial revert of b0f6a45b25dd1 ("src: add --literal option")
which was added during the development cycle before 0.9.1 is released.
After looking at patch: https://patchwork.ozlabs.org/patch/969864/ that
allows to print priority, uid, gid and protocols as numerics, I decided
to revisit this to provide individual options to turn on literal
printing.
What I'm proposing is to provide a good default for everyone, and
provide options to turn on literal/numeric printing.
This patch adds nft_ctx_output_{set,get}_flags() and define two flags to
enable reverse DNS lookups and to print ports as service names.
This patch introduces -S/--services, to print service names as per
/etc/services.
Acked-by: Phil Sutter <phil@nwl.cc>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include/nftables.h')
-rw-r--r-- | include/nftables.h | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/include/nftables.h b/include/nftables.h index 1009e266..86b44f17 100644 --- a/include/nftables.h +++ b/include/nftables.h @@ -16,9 +16,9 @@ struct cookie { }; struct output_ctx { + unsigned int flags; unsigned int numeric; unsigned int stateless; - unsigned int literal; unsigned int handle; unsigned int echo; unsigned int json; @@ -32,6 +32,16 @@ struct output_ctx { }; }; +static inline bool nft_output_reversedns(const struct output_ctx *octx) +{ + return octx->flags & NFT_CTX_OUTPUT_REVERSEDNS; +} + +static inline bool nft_output_service(const struct output_ctx *octx) +{ + return octx->flags & NFT_CTX_OUTPUT_SERVICE; +} + struct nft_cache { uint16_t genid; struct list_head list; |