diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-10-24 19:18:50 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-10-24 19:26:34 +0200 |
commit | 6dc1c3d8bb64077da7f3f28c7368fb087d10a492 (patch) | |
tree | 880fe8bacaaf4b72035a9c430f86e6e5a15ba9bf /src/expr/reject.c | |
parent | dc240913458d591f59b52b3899d3fc3c5d6ec6ce (diff) |
src: remove nftnl_rule_cmp() and nftnl_expr_cmp()
These functions are not very useful, rule comparison from this layer
does not work well with implicit set definitions.
This infrastructure was added as an attempt to support for deletion by
name from this layer, which should be done from higher level libnftables
library. Finally, we never had a client for this code in
git.netfilter.org.
Let's remove it and bump libversion for safety reasons.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/expr/reject.c')
-rw-r--r-- | src/expr/reject.c | 16 |
1 files changed, 0 insertions, 16 deletions
diff --git a/src/expr/reject.c b/src/expr/reject.c index 3e49076..141942e 100644 --- a/src/expr/reject.c +++ b/src/expr/reject.c @@ -140,26 +140,10 @@ nftnl_expr_reject_snprintf(char *buf, size_t len, uint32_t type, return -1; } -static bool nftnl_expr_reject_cmp(const struct nftnl_expr *e1, - const struct nftnl_expr *e2) -{ - struct nftnl_expr_reject *r1 = nftnl_expr_data(e1); - struct nftnl_expr_reject *r2 = nftnl_expr_data(e2); - bool eq = true; - - if (e1->flags & (1 << NFTNL_EXPR_REJECT_TYPE)) - eq &= (r1->type == r2->type); - if (e1->flags & (1 << NFTNL_EXPR_REJECT_CODE)) - eq &= (r1->icmp_code == r2->icmp_code); - - return eq; -} - struct expr_ops expr_ops_reject = { .name = "reject", .alloc_len = sizeof(struct nftnl_expr_reject), .max_attr = NFTA_REJECT_MAX, - .cmp = nftnl_expr_reject_cmp, .set = nftnl_expr_reject_set, .get = nftnl_expr_reject_get, .parse = nftnl_expr_reject_parse, |