Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | libxtables: hand argv to xtables_check_inverse | Jan Engelhardt | 2009-11-03 | 1 | -2/+2 |
| | | | | | | | | | In going to fix NF bug #611, "argv" is needed in xtables_check_inverse to set "optarg" to the right spot in case of an intrapositional negation. References: http://bugzilla.netfilter.org/show_bug.cgi?id=611 Signed-off-by: Jan Engelhardt <jengelh@medozas.de> | ||||
* | iptables: replace open-coded sizeof by ARRAY_SIZE | Jan Engelhardt | 2009-05-26 | 1 | -9/+3 |
| | | | | Signed-off-by: Jan Engelhardt <jengelh@medozas.de> | ||||
* | extensions: remove unwanted/add needed includes for IPv4 exts | Jan Engelhardt | 2009-02-21 | 1 | -1/+0 |
| | | | | | | | Most touched files do not use anything from ip_tables.h, so remove that #include. multiport instead, does need it (ipt_entry). Signed-off-by: Jan Engelhardt <jengelh@medozas.de> | ||||
* | libxtables: prefix exit_error to xtables_error | Jan Engelhardt | 2009-02-21 | 1 | -13/+13 |
| | | | | Signed-off-by: Jan Engelhardt <jengelh@medozas.de> | ||||
* | libxtables: prefix/order - move check_inverse to xtables.c | Jan Engelhardt | 2009-01-30 | 1 | -2/+2 |
| | | | | | | | This also adds a warning that intrapositional negation support is deprecated. Signed-off-by: Jan Engelhardt <jengelh@medozas.de> | ||||
* | libxtables: prefix - parse and escaped output func | Jan Engelhardt | 2009-01-30 | 1 | -1/+1 |
| | | | | Signed-off-by: Jan Engelhardt <jengelh@medozas.de> | ||||
* | libxtables: prefix/order - strtoui | Jan Engelhardt | 2009-01-27 | 1 | -1/+1 |
| | | | | | | This commit also throws out the redundant string_to_number_*. Signed-off-by: Jan Engelhardt <jengelh@medozas.de> | ||||
* | src: remove redundant casts | Jan Engelhardt | 2009-01-27 | 1 | -1/+1 |
| | | | | | | All of them are implicitly convertable without any wanted side effects. Signed-off-by: Jan Engelhardt <jengelh@medozas.de> | ||||
* | src: remove inclusion of iptables.h | Jan Engelhardt | 2008-11-20 | 1 | -1/+1 |
| | | | | | | | | | iptables.h and ip6tables.h only include declarations internal to iptables (specifically iptables.c and ip6tables.c), as most of the public API has been moved to xtables.h a few months ago. Signed-off-by: Jan Engelhardt <jengelh@medozas.de> Signed-off-by: Patrick McHardy <kaber@trash.net> | ||||
* | src: use NFPROTO_ constants | Jan Engelhardt | 2008-11-18 | 1 | -1/+1 |
| | | | | | | | | Resync netfilter.h from the latest kernel and make use of the new NFPROTO_ constants that have been introduced. Signed-off-by: Jan Engelhardt <jengelh@medozas.de> Signed-off-by: Patrick McHardy <kaber@trash.net> | ||||
* | src: Update comments | Jan Engelhardt | 2008-09-01 | 1 | -6/+0 |
| | | | | | | | | A number of comments are redundant, some outdated and others outright wrong in their own way. Remove and fixup. Signed-off-by: Jan Engelhardt <jengelh@medozas.de> Signed-off-by: Patrick McHardy <kaber@trash.net> | ||||
* | Remove old functions, constants | Jan Engelhardt | 2008-04-15 | 1 | -8/+8 |
| | |||||
* | fix gcc warnings | Max Kellermann | 2008-01-29 | 1 | -1/+1 |
| | | | | Max Kellermann <max@duempel.org> | ||||
* | escape strings | Max Kellermann | 2008-01-29 | 1 | -2/+4 |
| | | | | Max Kellermann <max@duempel.org> | ||||
* | Unique names 4/6 | Jan Engelhardt | 2007-10-04 | 1 | -25/+16 |
| | | | | | | | | | | | Give symbols of libxt targets unique names (2/3). Adds unique prefixes to all functions (most of them - especially the hook functions) so that debugging programs can unambiguously map a symbol to an address. Also unifies the names of the xtables_match/xtables_target structs, (based upon libxt_connmark.c/libip6t_*.c). Signed-off-by: Jan Engelhardt <jengelh@gmx.de> | ||||
* | Constify data structures | Jan Engelhardt | 2007-10-04 | 1 | -1/+1 |
| | | | | | | Constify more data structures. Make functions static. Signed-off-by: Jan Engelhardt <jengelh@gmx.de> | ||||
* | Delete empty ->final_check() functions | Jan Engelhardt | 2007-10-04 | 1 | -6/+0 |
| | | | | | | | Deletes empty ->final_check() functions, and makes ip[6]tables checks for NULL on these. Signed-off-by: Jan Engelhardt <jengelh@gmx.de> | ||||
* | Fix sparse warnings: non-ANSI function declarations, 0 used as pointer | Patrick McHardy | 2007-09-08 | 1 | -7/+7 |
| | |||||
* | Remove last vestiges of NFC (Peter Riley <Peter.Riley@hotpop.com>) | Peter Riley | 2007-09-02 | 1 | -1/+1 |
| | |||||
* | Make the option structures const. | Jan Engelhardt | 2007-07-30 | 1 | -1/+1 |
| | | | | Signed-off-by: Jan Engelhardt <jengelh@gmx.de> | ||||
* | Fixes warning on compilation of iptables matches/targets | Yasuyuki KOZAKAI | 2007-07-24 | 1 | -3/+3 |
| | | | | | | | | | This changes the type of arguments as follows - ipt_ip * -> void * - ipt_entry * -> void * This patch doesn't change multiport, DNAT, SNAT, MASQUERADE, REDIRECT because these need more changes (casting void * variable with intended type) | ||||
* | Replaces ipt_entry_* with xt_entry_* in matches/targets | Yasuyuki KOZAKAI | 2007-07-24 | 1 | -4/+4 |
| | |||||
* | iptables segfaults when given "" to --log-prefix (Mike Frysinger ↵ | Mike Frysinger | 2006-10-10 | 1 | -0/+4 |
| | | | | | | <vapier@gentoo.org>) Bugzilla #516 | ||||
* | don't allow newlines in LOG prefix (Phil Oester) (Closes: #312) | Phil Oester | 2005-04-01 | 1 | -0/+4 |
| | |||||
* | Kill NFC_* stuff in iptables (Pablo Neira <pablo@eurodev.net>) | Pablo Neira | 2005-02-14 | 1 | -2/+0 |
| | | | | Fixes build with conntrack event patch for 2.6 | ||||
* | Make it compile on current kernels, the future isn't here yet. | Martin Josefsson | 2005-01-05 | 1 | -0/+6 |
| | |||||
* | Add --log-uid option (John Lange <john.lange@open-it.ca>) | John Lange | 2005-01-02 | 1 | -1/+17 |
| | |||||
* | Get rid of some warnings when compiling 64bit. | Martin Josefsson | 2004-05-26 | 1 | -1/+1 |
| | |||||
* | remove unused variable and move to c99 initializers (Stephane Ouellette) | Stephane Ouellette | 2003-08-11 | 1 | -28/+27 |
| | |||||
* | Fix iptables-save (save everything numerically) | Thomas Woerner | 2003-07-14 | 1 | -10/+2 |
| | | | | by Thomas Woerner <twoerner@redhat.com> | ||||
* | make IPv4 and IPv6 LOG target save() the log-level as string, instead of the | Michael Schwendt | 2002-09-07 | 1 | -2/+11 |
| | | | | numeric value. (Michael Schwendt) | ||||
* | globally replace NETFILTER_VERSION with IPTABLES_VERSION to have consistent ↵ | Harald Welte | 2002-05-29 | 1 | -2/+2 |
| | | | | naming | ||||
* | Fix 'iptables -p !' bug (segfault when `!' used without argument) | Harald Welte | 2002-03-14 | 1 | -2/+2 |
| | |||||
* | loglevel patch was missing one line (strange...) | Harald Welte | 2001-10-22 | 1 | -2/+3 |
| | |||||
* | Yet another set of string_to_number() fixes. | Marc Boucher | 2001-09-08 | 1 | -1/+1 |
| | |||||
* | - added patch to support statically linking of iptables | Harald Welte | 2001-08-06 | 1 | -0/+1 |
| | | | | - iptables-save/-restore is no longer experimental | ||||
* | further fixes of string_to_number fixes | Harald Welte | 2001-07-23 | 1 | -3/+2 |
| | |||||
* | --log-prefix and --ulog-prefix problem when not quoted in save function ↵ | Harald Welte | 2001-01-24 | 1 | -1/+1 |
| | | | | (reported and fixed by Bart Theunissen) | ||||
* | Aligning matchsize and targetsize now responsibility of extension writers | Rusty Russell | 2000-07-03 | 1 | -2/+2 |
| | | | | (PPC fix). | ||||
* | Changes to allow matching (for delete) on part of a rule, for rules which | Rusty Russell | 2000-04-19 | 1 | -0/+1 |
| | | | | change in the kernel (eg. ipt_limit). | ||||
* | Makefile fixes for release.v1.0.0-alpha | Rusty Russell | 2000-03-20 | 1 | -2/+2 |
| | | | | Whitespace cleanups. | ||||
* | reorganized tree after kernel merge | Marc Boucher | 2000-03-20 | 1 | -0/+260 |