]> git.proxmox.com Git - mirror_ubuntu-bionic-kernel.git/commit
netfilter: implement NFPROTO_UNSPEC as a wildcard for extensions
authorJan Engelhardt <jengelh@computergmbh.de>
Wed, 8 Oct 2008 09:35:01 +0000 (11:35 +0200)
committerPatrick McHardy <kaber@trash.net>
Wed, 8 Oct 2008 09:35:01 +0000 (11:35 +0200)
commit55b69e91040c685a064198bd76e59885b7ad26c6
treef106ca5825afdda752b89cae7e7d384ba55a7d44
parentee999d8b9573df1b547aacdc6d79f86eb79c25cd
netfilter: implement NFPROTO_UNSPEC as a wildcard for extensions

When a match or target is looked up using xt_find_{match,target},
Xtables will also search the NFPROTO_UNSPEC module list. This allows
for protocol-independent extensions (like xt_time) to be reused from
other components (e.g. arptables, ebtables).

Extensions that take different codepaths depending on match->family
or target->family of course cannot use NFPROTO_UNSPEC within the
registration structure (e.g. xt_pkttype).

Signed-off-by: Jan Engelhardt <jengelh@medozas.de>
Signed-off-by: Patrick McHardy <kaber@trash.net>
14 files changed:
net/netfilter/x_tables.c
net/netfilter/xt_CLASSIFY.c
net/netfilter/xt_MARK.c
net/netfilter/xt_RATEEST.c
net/netfilter/xt_SECMARK.c
net/netfilter/xt_TRACE.c
net/netfilter/xt_limit.c
net/netfilter/xt_mark.c
net/netfilter/xt_quota.c
net/netfilter/xt_rateest.c
net/netfilter/xt_statistic.c
net/netfilter/xt_string.c
net/netfilter/xt_time.c
net/netfilter/xt_u32.c