]> git.ipfire.org Git - thirdparty/nftables.git/log
projects / thirdparty / nftables.git / log
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
thirdparty/nftables.git
16 years agoexpr: add support for cloning expressions
commit | commitdiff | tree
Patrick McHardy [Fri, 20 Mar 2009 15:12:18 +0000 (16:12 +0100)] 
expr: add support for cloning expressions

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoAdd more notes to INSTALL
commit | commitdiff | tree
Patrick McHardy [Fri, 20 Mar 2009 08:09:42 +0000 (09:09 +0100)] 
Add more notes to INSTALL

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoAdd support for user-defined symbolic constants
commit | commitdiff | tree
Patrick McHardy [Fri, 20 Mar 2009 07:34:59 +0000 (08:34 +0100)] 
Add support for user-defined symbolic constants

User-defined constants can be used like this:

 define allowed_hosts = { 192.168.0.0/24, 10.0.0.20-10.0.0.30 }
 define udp_services = domain
 define tcp_services = { ssh, domain }

 ip saddr $allowed_hosts udp dport $udp_services counter accept
 ip saddr $allowed_hosts tcp dport $tcp_services counter accept

Recursive definitions are possible, but currently not fully handled.
Anything requiring transformations (sets using ranges) can not be
used more than once currently since the expressions need to be COW'ed
previously.

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoAdd support for scoping and symbol binding
commit | commitdiff | tree
Patrick McHardy [Fri, 20 Mar 2009 07:12:18 +0000 (08:12 +0100)] 
Add support for scoping and symbol binding

As a first step towards stand-alone sets, add support for scoping and
binding symbols. This will be used for user-defined constants, as well
as declarations of modifiable (stand-alone) sets once the kernel side
is ready.

Scopes are currently limited to three nesting levels: the global scope,
table block scopes and chain block scopes.

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoparser: consistently use $@ for location of entire grouping
commit | commitdiff | tree
Patrick McHardy [Fri, 20 Mar 2009 05:25:10 +0000 (06:25 +0100)] 
parser: consistently use $@ for location of entire grouping

Replace use of specific location references for single-element rules.

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoparser: fix common_block usage in chain and table blocks
commit | commitdiff | tree
Patrick McHardy [Fri, 20 Mar 2009 05:18:44 +0000 (06:18 +0100)] 
parser: fix common_block usage in chain and table blocks

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoAdd installation instructions
commit | commitdiff | tree
Patrick McHardy [Fri, 20 Mar 2009 00:58:41 +0000 (01:58 +0100)] 
Add installation instructions

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agobuild: fix installation when docs are not built
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 19:49:09 +0000 (20:49 +0100)] 
build: fix installation when docs are not built

Don't try to install non-existant files.

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agobuild: remove double subdir in build output
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 19:32:38 +0000 (20:32 +0100)] 
build: remove double subdir in build output

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoAllow newlines in regular maps
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 09:45:31 +0000 (10:45 +0100)] 
Allow newlines in regular maps

The previous patch only handled sets and verdict maps.

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoAllow newlines in sets and maps
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 09:32:56 +0000 (10:32 +0100)] 
Allow newlines in sets and maps

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agokill obsolete TODO item
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 07:20:02 +0000 (08:20 +0100)] 
kill obsolete TODO item

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoFix use of reserved names in header sandwich
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 06:17:10 +0000 (07:17 +0100)] 
Fix use of reserved names in header sandwich

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agolexer: fix some whitespace errors
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 06:08:48 +0000 (07:08 +0100)] 
lexer: fix some whitespace errors

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agonetlink: wrap libnl object dumping in #ifdef DEBUG
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 05:28:28 +0000 (06:28 +0100)] 
netlink: wrap libnl object dumping in #ifdef DEBUG

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agotemplates: add IPv6 raw table template
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 05:23:57 +0000 (06:23 +0100)] 
templates: add IPv6 raw table template

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agobuild: work around docbook2x-man inability to specify output file
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 05:15:46 +0000 (06:15 +0100)] 
build: work around docbook2x-man inability to specify output file

Signed-off-by: Patrick McHardy <kaber@trash.net>
16 years agoInitial commit v0.01-alpha1
commit | commitdiff | tree
Patrick McHardy [Wed, 18 Mar 2009 03:55:00 +0000 (04:55 +0100)] 
Initial commit

Mirror of git://git.netfilter.org/nftables