review.tizen.org Git - platform/kernel/linux-amlogic.git/commit

author	Liping Zhang <liping.zhang@spreadtrum.com>
	Thu, 22 Sep 2016 14:28:51 +0000 (22:28 +0800)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Sun, 25 Sep 2016 12:54:02 +0000 (14:54 +0200)
commit	d767ff2c84f19be1aa403762f34eebbb403caf6d
tree	fd0b02f9d67749c6ada59b7db5558e92ed5fd604	tree \| snapshot
parent	8d11350f5f33378efc5f905bee325f3e76d6bcca	commit \| diff

netfilter: nft_ct: unnecessary to require dir when use ct l3proto/protocol

Currently, if the user want to match ct l3proto, we must specify the
direction, for example:
  # nft add rule filter input ct original l3proto ipv4
                                 ^^^^^^^^
Otherwise, error message will be reported:
  # nft add rule filter input ct l3proto ipv4
  nft add rule filter input ct l3proto ipv4
  <cmdline>:1:1-38: Error: Could not process rule: Invalid argument
  add rule filter input ct l3proto ipv4
  ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Actually, there's no need to require NFTA_CT_DIRECTION attr, because
ct l3proto and protocol are unrelated to direction.

And for compatibility, even if the user specify the NFTA_CT_DIRECTION
attr, do not report error, just skip it.

Signed-off-by: Liping Zhang <liping.zhang@spreadtrum.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>