From: Daniel Wagner <[email protected]> Hi,
This version is only small cosmetic update. The commit message on the last patch got updated and an unrealted change in the last patch got also dropped. cheers, daniel orignal cover-letter: This series is based on "[PATCH v7] iptables refactoring" series. The orignal title of this series was "[PATCH v0 00/16] Managed iptables API". The first two patches bring back __connman_iptables_insert() which is needed for patch #9. Patch #3 just adds support for '-I' operations to iptables-test. Patch #4 to #7 add support to cleanup iptables rules we might have added in a previous run (ConnMan might have crashed). A context is introduce with (patch #8) which collects several iptables rules which then can be added or removed via in one go (calling __connman_firewall_enable()) ConnMan should not mess with any rules already in the system. Therefore, this series adds support for maintaining ConnMan's own iptables user chains for each builtin chain (patch #9) The final patch just adds some tests to iptables-unit. Daniel Wagner (10): iptables: Tell prepare_rule_inclusion() rule position iptables: Add __connman_iptables_insert() iptables-test: Add insert support connman: Add callback helpers iptables: Add chain iterator firewall: Add firewall file firewall: Flush managed chains firewall: Add firewall API firewall: Maintain iptables rules in dedicated ConnMan chains iptables-unit: Add firewall API tests Makefile.am | 4 +- include/types.h | 19 +++ src/connman.h | 24 +++ src/firewall.c | 441 ++++++++++++++++++++++++++++++++++++++++++++++++++ src/iptables.c | 125 ++++++++++---- src/main.c | 2 + tools/iptables-test.c | 12 +- tools/iptables-unit.c | 84 ++++++++++ 8 files changed, 673 insertions(+), 38 deletions(-) create mode 100644 src/firewall.c -- 1.8.2.rc3.16.gce432ca _______________________________________________ connman mailing list [email protected] http://lists.connman.net/listinfo/connman
