From: Daniel Wagner <[email protected]> Hi,
This series is based on "[PATCH v7] iptables refactoring" series. The orignal title of this series was "[PATCH v0 00/16] Managed iptables API". The first two patches bring back __connman_iptables_insert() which is needed for patch #9. Patch #3 just adds support for '-I' operations to iptables-test. Patch #4 to #7 add support to cleanup iptables rules we might have added in a previous run (ConnMan might have crashed). A context is introduce with (patch #8) which collects several iptables rules which then can be added or removed via in one go (calling __connman_firewall_enable()) ConnMan should not mess with any rules already in the system. Therefore, this series adds support for maintaining ConnMan's own iptables user chains for each builtin chain (patch #9) The final patch just adds some tests to iptables-unit. cheers, daniel Daniel Wagner (10): iptables: Tell prepare_rule_inclusion() rule position iptables: Add __connman_iptables_insert() iptables-test: Add insert support connman: Add callback helpers iptables: Add chain iterator firewall: Add firewall file firewall: Flush managed chains firewall: Add firewall API firewall: Maintain iptables rules in dedicated ConnMan chains test-iptables: Add firewall API tests Makefile.am | 4 +- include/types.h | 19 +++ src/connman.h | 24 +++ src/firewall.c | 441 ++++++++++++++++++++++++++++++++++++++++++++++++++ src/iptables.c | 125 ++++++++++---- src/main.c | 2 + tools/iptables-test.c | 12 +- tools/iptables-unit.c | 95 ++++++++++- 8 files changed, 678 insertions(+), 44 deletions(-) create mode 100644 src/firewall.c -- 1.8.2.rc3.16.gce432ca _______________________________________________ connman mailing list [email protected] http://lists.connman.net/listinfo/connman
