diff mbox

[libnftnl] examples: complete nft-events example

Message ID 20140401120643.4333.51861.stgit@nfdev.cica.es
State Accepted
Headers show

Commit Message

Arturo Borrero April 1, 2014, 12:06 p.m. UTC 
Complete nft-events example by adding a basic set & set_elem event
notification.

Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
---
 examples/nft-events.c |   60 +++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 60 insertions(+)


--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Comments

Pablo Neira Ayuso April 7, 2014, 8:54 a.m. UTC | #1 
On Tue, Apr 01, 2014 at 02:06:44PM +0200, Arturo Borrero Gonzalez wrote:
> Complete nft-events example by adding a basic set & set_elem event
> notification.

Applied, thanks Arturo.

The set element event support will show up in kernels >= 3.16, but
this example code doesn't harm, we won't just get any set element
event line in the output meanwhile.
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
diff mbox

Patch

diff --git a/examples/nft-events.c b/examples/nft-events.c
index 150346a..989f4bd 100644
--- a/examples/nft-events.c
+++ b/examples/nft-events.c
@@ -21,6 +21,7 @@ 
 #include <libnftnl/table.h>
 #include <libnftnl/chain.h>
 #include <libnftnl/rule.h>
+#include <libnftnl/set.h>
 
 static int table_cb(const struct nlmsghdr *nlh, int type)
 {
@@ -97,6 +98,57 @@  err:
 	return MNL_CB_OK;
 }
 
+static int set_cb(const struct nlmsghdr *nlh, int type)
+{
+	struct nft_set *t;
+	char buf[4096];
+
+	t = nft_set_alloc();
+	if (t == NULL) {
+		perror("OOM");
+		goto err;
+	}
+
+	if (nft_set_nlmsg_parse(nlh, t) < 0) {
+		perror("nft_set_nlmsg_parse");
+		goto err_free;
+	}
+
+	nft_set_snprintf(buf, sizeof(buf), t, NFT_OUTPUT_DEFAULT, 0);
+	printf("[%s]\t%s\n", type == NFT_MSG_NEWSET ? "NEW" : "DEL", buf);
+
+err_free:
+	nft_set_free(t);
+err:
+	return MNL_CB_OK;
+}
+
+static int setelem_cb(const struct nlmsghdr *nlh, int type)
+{
+
+	struct nft_set *s;
+	char buf[4096];
+
+	s = nft_set_alloc();
+	if (s == NULL) {
+		perror("OOM");
+		goto err;
+	}
+
+	if (nft_set_elems_nlmsg_parse(nlh, s) < 0) {
+		perror("nft_set_nlmsg_parse");
+		goto err_free;
+	}
+
+	nft_set_snprintf(buf, sizeof(buf), s, NFT_OUTPUT_DEFAULT, 0);
+	printf("[%s]\t%s\n", type == NFT_MSG_NEWSETELEM ? "NEW" : "DEL", buf);
+
+err_free:
+	nft_set_free(s);
+err:
+	return MNL_CB_OK;
+}
+
 static int events_cb(const struct nlmsghdr *nlh, void *data)
 {
 	int ret = MNL_CB_OK;
@@ -115,6 +167,14 @@  static int events_cb(const struct nlmsghdr *nlh, void *data)
 	case NFT_MSG_DELRULE:
 		ret = rule_cb(nlh, type);
 		break;
+	case NFT_MSG_NEWSET:
+	case NFT_MSG_DELSET:
+		ret = set_cb(nlh, type);
+		break;
+	case NFT_MSG_NEWSETELEM:
+	case NFT_MSG_DELSETELEM:
+		ret = setelem_cb(nlh, type);
+		break;
 	}
 
 	return ret;