projects / openwrt / staging / blogic.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 0ecba4d)
netfilter: nft_meta: permit pkttype mangling in ip/ip6 prerouting
authorLiping Zhang <liping.zhang@spreadtrum.com>
Wed, 19 Oct 2016 15:31:29 +0000 (23:31 +0800)
committerPablo Neira Ayuso <pablo@netfilter.org>
Wed, 26 Oct 2016 14:35:16 +0000 (16:35 +0200)
After supporting this, we can combine it with hash expression to emulate
the 'cluster match'.

Suggested-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Liping Zhang <liping.zhang@spreadtrum.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nft_meta.c patch | blob | history

diff --git a/net/netfilter/nft_meta.c b/net/netfilter/nft_meta.c
index 6c1e0246706e06b492dbdb2ed068acf1fa2879da..64994023bf812a17cfba5840a54b32f9bba2adc1 100644 (file)
--- a/net/netfilter/nft_meta.c
+++ b/net/netfilter/nft_meta.c
@@ -310,6 +310,11 @@ int nft_meta_set_validate(const struct nft_ctx *ctx,
        case NFPROTO_NETDEV:
                hooks = 1 << NF_NETDEV_INGRESS;
                break;
+       case NFPROTO_IPV4:
+       case NFPROTO_IPV6:
+       case NFPROTO_INET:
+               hooks = 1 << NF_INET_PRE_ROUTING;
+               break;
        default:
                return -EOPNOTSUPP;
        }
John Crispins staging tree