diff options
| author |   Fernando Fernandez Mancera <ffmancera@riseup.net> | 2018-07-14 16:50:59 +0200 |
|---|---|---|
| committer |   Pablo Neira Ayuso <pablo@netfilter.org> | 2018-07-18 11:26:55 +0200 |
| commit | 24c458c485c87eef97e91d2e180f222555528b11 (patch) | |
| tree | 6f89a814e7dc7e5a05851602a5eeeb3fa1bb260f /include/uapi/linux/netfilter/nf_osf.h | |
| parent | ipv6: remove dependency of nf_defrag_ipv6 on ipv6 module (diff) | |
| download | linux-dev-24c458c485c87eef97e91d2e180f222555528b11.tar.xz linux-dev-24c458c485c87eef97e91d2e180f222555528b11.zip | |
netfilter: nf_osf: add missing definitions to header file
Add missing definitions from nf_osf.h in order to extract Passive OS
fingerprint infrastructure from xt_osf.
Signed-off-by: Fernando Fernandez Mancera <ffmancera@riseup.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include/uapi/linux/netfilter/nf_osf.h')
| -rw-r--r-- | include/uapi/linux/netfilter/nf_osf.h | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/include/uapi/linux/netfilter/nf_osf.h b/include/uapi/linux/netfilter/nf_osf.h index 8f2f2f403183..3738116b2bbe 100644 --- a/include/uapi/linux/netfilter/nf_osf.h +++ b/include/uapi/linux/netfilter/nf_osf.h @@ -16,9 +16,14 @@ #define NF_OSF_TTL_TRUE 0 /* True ip and fingerprint TTL comparison */ +/* Check if ip TTL is less than fingerprint one */ +#define NF_OSF_TTL_LESS 1 + /* Do not compare ip and fingerprint TTL at all */ #define NF_OSF_TTL_NOCHECK 2 +#define NF_OSF_FLAGMASK (NF_OSF_GENRE | NF_OSF_TTL | \ + NF_OSF_LOG | NF_OSF_INVERT) /* Wildcard MSS (kind of). * It is used to implement a state machine for the different wildcard values * of the MSS and window sizes. @@ -83,4 +88,10 @@ enum iana_options { OSFOPT_EMPTY = 255, }; +enum nf_osf_attr_type { + OSF_ATTR_UNSPEC, + OSF_ATTR_FINGER, + OSF_ATTR_MAX, +}; + #endif /* _NF_OSF_H */ |