[NETFILTER] ctnetlink: add marking support from userspace
This patch adds support for conntrack marking from user space. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org> Signed-off-by: Harald Welte <laforge@netfilter.org> Signed-off-by: David S. Miller <davem@davemloft.net>
This commit is contained in:
parent
51df784ed7
commit
02a78cdf42
@ -979,6 +979,11 @@ ctnetlink_change_conntrack(struct ip_conntrack *ct, struct nfattr *cda[])
|
|||||||
return err;
|
return err;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
#if defined(CONFIG_IP_NF_CONNTRACK_MARK)
|
||||||
|
if (cda[CTA_MARK-1])
|
||||||
|
ct->mark = ntohl(*(u_int32_t *)NFA_DATA(cda[CTA_MARK-1]));
|
||||||
|
#endif
|
||||||
|
|
||||||
DEBUGP("all done\n");
|
DEBUGP("all done\n");
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
@ -1022,6 +1027,11 @@ ctnetlink_create_conntrack(struct nfattr *cda[],
|
|||||||
if (ct->helper)
|
if (ct->helper)
|
||||||
ip_conntrack_helper_put(ct->helper);
|
ip_conntrack_helper_put(ct->helper);
|
||||||
|
|
||||||
|
#if defined(CONFIG_IP_NF_CONNTRACK_MARK)
|
||||||
|
if (cda[CTA_MARK-1])
|
||||||
|
ct->mark = ntohl(*(u_int32_t *)NFA_DATA(cda[CTA_MARK-1]));
|
||||||
|
#endif
|
||||||
|
|
||||||
DEBUGP("conntrack with id %u inserted\n", ct->id);
|
DEBUGP("conntrack with id %u inserted\n", ct->id);
|
||||||
return 0;
|
return 0;
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user