src: add comment support for objects

Enables specifying an optional comment when declaring named objects. The comment is to be specified inside the object's block ({} block) Relies on libnftnl exporting nftnl_obj_get_data and kernel space support to store the comments. For consistency, this patch makes the comment be printed first when listing objects. Adds a testcase importing all commented named objects except for secmark, although it's supported. Example: Adding a quota with a comment > add table inet filter > nft add quota inet filter q { over 1200 bytes \; comment "test_comment"\; } > list ruleset table inet filter { quota q { comment "test_comment" over 1200 bytes } } Signed-off-by: Jose M. Guisado Gomez <guigom@riseup.net> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Jose M. Guisado Gomez <guigom@riseup.net> 2020-09-03 11:16:06 +0200
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2020-09-08 16:41:56 +0200
commit: 293c9b114faef074dbbda06df73f86317d28ef9b (patch)
tree: 2082a7c111a55174649d4b51b6d3c33471b1b4a2 /include/rule.h
parent: 741a06ac15d2bd903b33e5032f5f6fcd54bebc4e (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/include/rule.h b/include/rule.h
index 56f1951f..837005b1 100644
--- a/include/rule.h
+++ b/include/rule.h
@@ -479,6 +479,7 @@ struct obj {
 	struct handle			handle;
 	uint32_t			type;
 	unsigned int			refcnt;
+	const char			*comment;
 	union {
 		struct counter		counter;
 		struct quota		quota;
author	Jose M. Guisado Gomez <guigom@riseup.net>	2020-09-03 11:16:06 +0200
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2020-09-08 16:41:56 +0200
commit	293c9b114faef074dbbda06df73f86317d28ef9b (patch)
tree	2082a7c111a55174649d4b51b6d3c33471b1b4a2 /include/rule.h
parent	741a06ac15d2bd903b33e5032f5f6fcd54bebc4e (diff)