From 1a5153117784c267ceb81c048dd5e9b9c4309fbb Mon Sep 17 00:00:00 2001 From: Pablo Neira Ayuso Date: Mon, 29 Oct 2018 12:49:00 +0100 Subject: src: default to numeric UID and GID listing Like iptables-save, print UID and GID as numeric values by default. Add a new option `-u' to print the UID and GID names as defined by /etc/passwd and /etc/group. Note that -n is ignored after this patch, since default are numeric printing for UID and GID. Acked-by: Phil Sutter Signed-off-by: Pablo Neira Ayuso --- doc/libnftables.adoc | 3 +++ doc/nft.txt | 4 ++++ 2 files changed, 7 insertions(+) (limited to 'doc') diff --git a/doc/libnftables.adoc b/doc/libnftables.adoc index 6b8098fd..67d9f261 100644 --- a/doc/libnftables.adoc +++ b/doc/libnftables.adoc @@ -90,6 +90,7 @@ enum { NFT_CTX_OUTPUT_HANDLE = (1 << 3), NFT_CTX_OUTPUT_JSON = (1 << 4), NFT_CTX_OUTPUT_ECHO = (1 << 5), + NFT_CTX_OUTPUT_GUID = (1 << 6), }; ---- @@ -112,6 +113,8 @@ This flag controls JSON output format, input is auto-detected. NFT_CTX_OUTPUT_ECHO:: The echo setting makes libnftables print the changes once they are committed to the kernel, just like a running instance of *nft monitor* would. Amongst other things, this allows to retrieve an added rule's handle atomically. +NFT_CTX_OUTPUT_GUID:: + Display UID and GID as described in the /etc/passwd and /etc/group files. The *nft_ctx_output_get_flags*() function returns the output flags setting's value in 'ctx'. diff --git a/doc/nft.txt b/doc/nft.txt index 711d8a4f..39527c4e 100644 --- a/doc/nft.txt +++ b/doc/nft.txt @@ -52,6 +52,10 @@ For a full summary of options, run *nft --help*. *--service*:: Translate ports to service names as defined by /etc/services. +*-u*:: +*--guid**:: + Translate numeric UID/GID to names as defined by /etc/passwd and /etc/group. + *-c*:: *--check*:: Check commands validity without actually applying the changes. -- cgit v1.2.3