From: Liping Zhang <liping.zhang@xxxxxxxxxxxxxx> In iptables, user can specify log flags in LOG target, for exmaple: # iptables -A OUTPUT -j LOG --log-uid # iptables -A INPUT -j LOG --log-uid --log-tcp-sequence ... But this is not supported in nft, because related NF_LOG_XXX is not exposed to the userspace. So user cannot set the specific log flags explicitly. Now, this problem is solved by patch #1. The another issue is that nf_log is used by both nftables and iptables, so use XT_LOG_XXX macros is not very appropriate, replaces them with NF_LOG_XXX in patch #2. Liping Zhang (2): netfilter: nft_log: complete NFTA_LOG_FLAGS attr support netfilter: nf_log: get rid of XT_LOG_XXX macros include/net/netfilter/nf_log.h | 11 +++-------- include/uapi/linux/netfilter/nf_log.h | 12 ++++++++++++ net/bridge/netfilter/ebt_log.c | 2 +- net/ipv4/netfilter/ip_tables.c | 2 +- net/ipv4/netfilter/nf_log_arp.c | 2 +- net/ipv4/netfilter/nf_log_ipv4.c | 10 +++++----- net/ipv6/netfilter/ip6_tables.c | 2 +- net/ipv6/netfilter/nf_log_ipv6.c | 18 +++++++++--------- net/netfilter/nf_log_common.c | 4 ++-- net/netfilter/nf_tables_core.c | 2 +- net/netfilter/nft_log.c | 9 ++++++++- 11 files changed, 44 insertions(+), 30 deletions(-) create mode 100644 include/uapi/linux/netfilter/nf_log.h -- 2.5.5 -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
