summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Add more notes to INSTALLPatrick McHardy2009-03-201-2/+9
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* Add support for user-defined symbolic constantsPatrick McHardy2009-03-205-12/+59
| | | | | | | | | | | | | | | | | | User-defined constants can be used like this: define allowed_hosts = { 192.168.0.0/24, 10.0.0.20-10.0.0.30 } define udp_services = domain define tcp_services = { ssh, domain } ip saddr $allowed_hosts udp dport $udp_services counter accept ip saddr $allowed_hosts tcp dport $tcp_services counter accept Recursive definitions are possible, but currently not fully handled. Anything requiring transformations (sets using ranges) can not be used more than once currently since the expressions need to be COW'ed previously. Signed-off-by: Patrick McHardy <kaber@trash.net>
* Add support for scoping and symbol bindingPatrick McHardy2009-03-204-2/+103
| | | | | | | | | | | | As a first step towards stand-alone sets, add support for scoping and binding symbols. This will be used for user-defined constants, as well as declarations of modifiable (stand-alone) sets once the kernel side is ready. Scopes are currently limited to three nesting levels: the global scope, table block scopes and chain block scopes. Signed-off-by: Patrick McHardy <kaber@trash.net>
* parser: consistently use $@ for location of entire groupingPatrick McHardy2009-03-201-15/+15
| | | | | | Replace use of specific location references for single-element rules. Signed-off-by: Patrick McHardy <kaber@trash.net>
* parser: fix common_block usage in chain and table blocksPatrick McHardy2009-03-201-2/+2
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* Add installation instructionsPatrick McHardy2009-03-201-0/+52
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* build: fix installation when docs are not builtPatrick McHardy2009-03-181-5/+11
| | | | | | Don't try to install non-existant files. Signed-off-by: Patrick McHardy <kaber@trash.net>
* build: remove double subdir in build outputPatrick McHardy2009-03-181-1/+1
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* Allow newlines in regular mapsPatrick McHardy2009-03-181-3/+5
| | | | | | The previous patch only handled sets and verdict maps. Signed-off-by: Patrick McHardy <kaber@trash.net>
* Allow newlines in sets and mapsPatrick McHardy2009-03-181-11/+29
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* kill obsolete TODO itemPatrick McHardy2009-03-181-2/+0
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* Fix use of reserved names in header sandwichPatrick McHardy2009-03-1816-48/+48
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* lexer: fix some whitespace errorsPatrick McHardy2009-03-181-2/+2
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* netlink: wrap libnl object dumping in #ifdef DEBUGPatrick McHardy2009-03-181-0/+2
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* templates: add IPv6 raw table templatePatrick McHardy2009-03-181-0/+6
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* build: work around docbook2x-man inability to specify output filePatrick McHardy2009-03-181-1/+1
| | | | Signed-off-by: Patrick McHardy <kaber@trash.net>
* Initial commitv0.01-alpha1Patrick McHardy2009-03-1891-0/+17210