netfilter: implement NFPROTO_UNSPEC as a wildcard for extensions
When a match or target is looked up using xt_find_{match,target},
Xtables will also search the NFPROTO_UNSPEC module list. This allows
for protocol-independent extensions (like xt_time) to be reused from
other components (e.g. arptables, ebtables).
Extensions that take different codepaths depending on match->family
or target->family of course cannot use NFPROTO_UNSPEC within the
registration structure (e.g. xt_pkttype).
Signed-off-by: 
Jan Engelhardt <jengelh@medozas.de>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Showing
- net/netfilter/x_tables.c 10 additions, 0 deletionsnet/netfilter/x_tables.c
- net/netfilter/xt_CLASSIFY.c 12 additions, 26 deletionsnet/netfilter/xt_CLASSIFY.c
- net/netfilter/xt_MARK.c 1 addition, 9 deletionsnet/netfilter/xt_MARK.c
- net/netfilter/xt_RATEEST.c 11 additions, 22 deletionsnet/netfilter/xt_RATEEST.c
- net/netfilter/xt_SECMARK.c 11 additions, 21 deletionsnet/netfilter/xt_SECMARK.c
- net/netfilter/xt_TRACE.c 9 additions, 17 deletionsnet/netfilter/xt_TRACE.c
- net/netfilter/xt_limit.c 13 additions, 27 deletionsnet/netfilter/xt_limit.c
- net/netfilter/xt_mark.c 2 additions, 24 deletionsnet/netfilter/xt_mark.c
- net/netfilter/xt_quota.c 10 additions, 19 deletionsnet/netfilter/xt_quota.c
- net/netfilter/xt_rateest.c 11 additions, 22 deletionsnet/netfilter/xt_rateest.c
- net/netfilter/xt_statistic.c 10 additions, 21 deletionsnet/netfilter/xt_statistic.c
- net/netfilter/xt_string.c 6 additions, 25 deletionsnet/netfilter/xt_string.c
- net/netfilter/xt_time.c 9 additions, 19 deletionsnet/netfilter/xt_time.c
- net/netfilter/xt_u32.c 9 additions, 17 deletionsnet/netfilter/xt_u32.c
Loading
Please register or sign in to comment