redonkable
/
remarkable-linux
1
0
Fork 0
Code Releases Activity
remarkable-linux/include/uapi/linux/netfilter
History
Liping Zhang ff107d2776 netfilter: nft_log: complete NFTA_LOG_FLAGS attr support 
NFTA_LOG_FLAGS attribute is already supported, but the related
NF_LOG_XXX flags are not exposed to the userspace. So we cannot
explicitly enable log flags to log uid, tcp sequence, ip options
and so on, i.e. such rule "nft add rule filter output log uid"
is not supported yet.

So move NF_LOG_XXX macro definitions to the uapi/../nf_log.h. In
order to keep consistent with other modules, change NF_LOG_MASK to
refer to all supported log flags. On the other hand, add a new
NF_LOG_DEFAULT_MASK to refer to the original default log flags.

Finally, if user specify the unsupported log flags or NFTA_LOG_GROUP
and NFTA_LOG_FLAGS are set at the same time, report EINVAL to the
userspace.

Signed-off-by: Liping Zhang <liping.zhang@spreadtrum.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
 		2016-09-25 23:16:43 +02:00
..
ipset libnl: nla_put_net64(): align on a 64-bit area 2016-04-23 20:13:24 -04:00
Kbuild netfilter: xt_SYNPROXY: add missing header to Kbuild 2016-06-17 13:47:28 +02:00
nf_conntrack_common.h netfilter: Remove IP_CT_NEW_REPLY definition. 2016-03-14 23:47:27 +01:00
nf_conntrack_ftp.h
nf_conntrack_sctp.h netfilter: nf_ct_sctp: move ip_ct_sctp away from UAPI 2015-11-23 17:54:42 +01:00
nf_conntrack_tcp.h conntrack: RFC5961 challenge ACK confuse conntrack LAST-ACK transition 2015-05-15 20:50:56 +02:00
nf_conntrack_tuple_common.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
nf_log.h netfilter: nft_log: complete NFTA_LOG_FLAGS attr support 2016-09-25 23:16:43 +02:00
nf_nat.h netfilter: nft_nat: include a flag attribute 2014-09-09 16:31:27 +02:00
nf_tables.h netfilter: nf_tables: add range expression 2016-09-25 23:16:42 +02:00
nf_tables_compat.h netfilter: nf_tables: add compatibility layer for x_tables 2013-10-14 18:00:04 +02:00
nfnetlink.h netfilter: nf_tables: extend tracing infrastructure 2015-12-09 13:18:37 +01:00
nfnetlink_acct.h libnl: nla_put_be64(): align on a 64-bit area 2016-04-23 20:13:24 -04:00
nfnetlink_compat.h
nfnetlink_conntrack.h netfilter: conntrack: remove packet hotpath stats 2016-09-12 19:59:39 +02:00
nfnetlink_cthelper.h
nfnetlink_cttimeout.h netfilter: nf_ct_sctp: minimal multihoming support 2015-07-30 12:59:25 +02:00
nfnetlink_log.h netfilter: nfnetlink_log: allow to attach conntrack 2015-10-05 17:32:14 +02:00
nfnetlink_queue.h netfilter: bridge: pass L2 header and VLAN as netlink attributes in queues to userspace 2016-03-29 13:26:38 +02:00
x_tables.h
xt_AUDIT.h
xt_CHECKSUM.h
xt_CLASSIFY.h
xt_CONNMARK.h
xt_CONNSECMARK.h
xt_CT.h netfilter: nf_conntrack: add efficient mark to zone mapping 2015-08-18 01:24:05 +02:00
xt_DSCP.h
xt_HMARK.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_IDLETIMER.h
xt_LED.h
xt_LOG.h
xt_MARK.h
xt_NFLOG.h netfilter: xt_NFLOG: nflog-range does not truncate packets 2016-06-24 11:03:23 +02:00
xt_NFQUEUE.h netfilter: xt_NFQUEUE: introduce CPU fanout 2013-04-02 01:25:44 +02:00
xt_RATEEST.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_SECMARK.h
xt_SYNPROXY.h netfilter: xt_SYNPROXY: include missing <linux/types.h> 2016-06-17 13:47:40 +02:00
xt_TCPMSS.h
xt_TCPOPTSTRIP.h
xt_TEE.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_TPROXY.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_addrtype.h
xt_bpf.h net: filter: split 'struct sk_filter' into socket and bpf parts 2014-08-02 15:03:58 -07:00
xt_cgroup.h netfilter: implement xt_cgroup cgroup2 path match 2015-12-14 20:34:55 +01:00
xt_cluster.h
xt_comment.h
xt_connbytes.h
xt_connlabel.h netfilter: add connlabel conntrack extension 2013-01-18 00:28:15 +01:00
xt_connlimit.h
xt_connmark.h
xt_conntrack.h netfilter: xt_conntrack: Add flag to support aliases 2013-02-05 01:45:23 +01:00
xt_cpu.h
xt_dccp.h
xt_devgroup.h
xt_dscp.h
xt_ecn.h
xt_esp.h
xt_hashlimit.h netfilter: xt_hashlimit: Create revision 2 to support higher pps rates 2016-09-25 14:54:06 +02:00
xt_helper.h
xt_ipcomp.h netfilter: add IPv4/6 IPComp extension match support 2013-12-24 12:37:58 +01:00
xt_iprange.h
xt_ipvs.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_l2tp.h netfilter: introduce l2tp match extension 2014-01-09 21:36:39 +01:00
xt_length.h
xt_limit.h
xt_mac.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_mark.h
xt_multiport.h
xt_nfacct.h
xt_osf.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_owner.h
xt_physdev.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_pkttype.h
xt_policy.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_quota.h
xt_rateest.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_realm.h
xt_recent.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_rpfilter.h netfilter: export xt_rpfilter.h to userland 2013-08-14 10:47:15 +02:00
xt_sctp.h netfilter: fix include files for compilation 2015-11-23 17:54:38 +01:00
xt_set.h netfilter: ipset: Alignment problem between 64bit kernel 32bit userspace 2014-12-03 12:43:35 +01:00
xt_socket.h netfilter: xt_socket: add XT_SOCKET_RESTORESKMARK flag 2015-06-18 13:05:09 +02:00
xt_state.h
xt_statistic.h
xt_string.h
xt_tcpmss.h
xt_tcpudp.h
xt_time.h
xt_u32.h