[iptables-nftables PATCH 0/5] Centralizes rule parsing

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi,

Here are the patches that refactors how rules are parsed. So now it's done in one unique place for all operations.

And it adds a function to reset the counters with -Z since it's trivial to do so with such parsing strategy.

Tomasz Bursztyka (5):
  nft: Parse fully and properly at once a rule into a cs
  nft: Refactor firewall printing so it reuses already parsed cs struct
  nft: Refactor rule deletion so it compares both cs structure
  xtables: nft: Complete refactoring on how rules are saved
  nft: Add a function to reset the counters of an existing rule

 iptables/nft-ipv4.c       |  99 ++++-----
 iptables/nft-ipv6.c       |  85 +++-----
 iptables/nft-shared.c     | 267 ++++++++++++------------
 iptables/nft-shared.h     |  16 +-
 iptables/nft.c            | 513 ++++++++++------------------------------------
 iptables/nft.h            |   5 +-
 iptables/xtables-events.c |  19 +-
 iptables/xtables.c        |  15 +-
 8 files changed, 342 insertions(+), 677 deletions(-)

-- 
1.8.3.2

--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html




[Index of Archives]     [Netfitler Users]     [LARTC]     [Bugtraq]     [Yosemite Forum]

  Powered by Linux