projects / linux-2.6-block.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
bpf: add bpf_jit_limit knob to restrict unpriv allocations
[linux-2.6-block.git] / net / netfilter / Kconfig
diff --git a/net/netfilter/Kconfig b/net/netfilter/Kconfig
index f61c306de1d089358ede089f87f97c72c8927670..2ab870ef233a83bda49710a1cb8feddbcb13c010 100644 (file)
--- a/net/netfilter/Kconfig
+++ b/net/netfilter/Kconfig
@@ -625,6 +625,13 @@ config NFT_FIB_INET
          The lookup will be delegated to the IPv4 or IPv6 FIB depending
          on the protocol of the packet.
 
+config NFT_XFRM
+       tristate "Netfilter nf_tables xfrm/IPSec security association matching"
+       depends on XFRM
+       help
+         This option adds an expression that you can use to extract properties
+         of a packets security association.
+
 config NFT_SOCKET
        tristate "Netfilter nf_tables socket match support"
        depends on IPV6 || IPV6=n
Linux 6.x block layer and io_uring tree(s)