]> git.ipfire.org Git - thirdparty/iptables.git/commit
projects / thirdparty / iptables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c03b316) | patch
iptables: accept lock file name at runtime
authorGiuseppe Scrivano <gscrivan@redhat.com>
Fri, 17 Jul 2020 08:39:40 +0000 (10:39 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Fri, 24 Jul 2020 11:21:41 +0000 (13:21 +0200)
commit5105e844c2ff6a3e320bf8cdadc5094d4eaef2b7
tree00a9703ddda483c8a9918e6a9e39d7cd3a8d659ctree | snapshot
parentc03b3166d67ef9606fdf52c34cfd38a8bf78a4abcommit | diff
iptables: accept lock file name at runtime

allow users to override at runtime the lock file to use through the
XTABLES_LOCKFILE environment variable.

It allows to use iptables when the user has granted enough
capabilities (e.g. a user+network namespace) to configure the network
but that lacks access to the XT_LOCK_NAME (by default placed under
/run).

$ XTABLES_LOCKFILE=/tmp/xtables unshare -rn iptables ...

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
configure.ac diff | blob | blame | history
iptables/iptables.8.in diff | blob | blame | history
iptables/xshared.c diff | blob | blame | history
Mirror of git://git.netfilter.org/iptables