netfilter-devel.vger.kernel.org archive mirror
 help / color / mirror / Atom feed
From: Pablo Neira Ayuso <pablo@netfilter.org>
To: netfilter-devel@vger.kernel.org
Cc: fw@strlen.de
Subject: [PATCH nft 00/10 nft] syntax updates
Date: Wed, 17 Aug 2016 15:29:51 +0200	[thread overview]
Message-ID: <1471440601-5327-1-git-send-email-pablo@netfilter.org> (raw)

Hi,

The following patchset is addressing part of the syntax issues that we
have discussed during the NFWS.

1) Quote user-defined strings from rule selectors. The current behaviour
   is inconsistent since some selectors are quoting user-defined strings
   and others do not, so let's quote them all.

2) Add 'to' for snat and dnat to keep it consistent with redirect,
   masquerade, dup and fwd.

3) Support for Ipv6 address between brackets.

4) Missing QUOTED_STRING and ASTERISK_STRING token descriptions.

5) Allow strings that start by _ and . so we comply with POSIX.1-2008.

6) Kill useless range patter from scanner.

7,8,9) Add meta priority support using minor:major syntax.

10) Add colon after 'redirect to' for consistency with nat and
   masquerade.

Comments welcome.

Pablo Neira Ayuso (10):
  src: quote user-defined strings when used from rule selectors
  src: add 'to' for snat and dnat
  src: support for RFC2732 IPv6 address format with brackets
  parser_bison: missing token string in QUOTED_ASTERISK and ASTERISK_STRING
  scanner: allow strings starting by underscores and dots
  scanner: remove range expression
  src: rename datatype name from tc_handle to classid
  src: simplify classid printing using %x instead of %04x
  src: meta priority support using tc classid
  parser_bison: redirect to :port for consistency with nat/masq statement

 include/datatype.h                  |  6 +--
 src/cli.c                           |  8 +++
 src/ct.c                            |  2 +-
 src/datatype.c                      | 12 +++--
 src/erec.c                          |  1 +
 src/main.c                          |  3 +-
 src/meta.c                          | 66 ++++++++++++++-----------
 src/parser_bison.y                  | 27 ++++++----
 src/proto.c                         |  2 +-
 src/scanner.l                       | 16 +++++-
 src/statement.c                     | 26 ++++++++--
 tests/py/any/meta.t                 | 80 ++++++++++++++++--------------
 tests/py/any/meta.t.payload         | 99 ++++++++++++++++++++++++++++++++-----
 tests/py/ip/dnat.t                  | 16 +++---
 tests/py/ip/dnat.t.payload.ip       | 12 ++---
 tests/py/ip/redirect.t              | 24 ++++-----
 tests/py/ip/redirect.t.payload      | 20 ++++----
 tests/py/ip/snat.t                  | 12 ++---
 tests/py/ip/snat.t.payload          |  8 +--
 tests/py/ip6/dnat.t                 |  5 +-
 tests/py/ip6/dnat.t.payload.ip6     | 14 +++++-
 tests/py/ip6/redirect.t             | 18 +++----
 tests/py/ip6/redirect.t.payload.ip6 | 14 +++---
 tests/py/ip6/snat.t                 |  4 +-
 tests/py/ip6/snat.t.payload.ip6     |  4 +-
 25 files changed, 325 insertions(+), 174 deletions(-)

-- 
2.1.4


             reply	other threads:[~2016-08-17 13:30 UTC|newest]

Thread overview: 11+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2016-08-17 13:29 Pablo Neira Ayuso [this message]
2016-08-17 13:29 ` [PATCH nft 01/10] src: quote user-defined strings when used from rule selectors Pablo Neira Ayuso
2016-08-17 13:29 ` [PATCH nft 02/10] src: add 'to' for snat and dnat Pablo Neira Ayuso
2016-08-17 13:29 ` [PATCH nft 03/10] src: support for RFC2732 IPv6 address format with brackets Pablo Neira Ayuso
2016-08-17 13:29 ` [PATCH nft 04/10] parser_bison: missing token string in QUOTED_ASTERISK and ASTERISK_STRING Pablo Neira Ayuso
2016-08-17 13:29 ` [PATCH nft 05/10] scanner: allow strings starting by underscores and dots Pablo Neira Ayuso
2016-08-17 13:29 ` [PATCH nft 06/10] scanner: remove range expression Pablo Neira Ayuso
2016-08-17 13:29 ` [PATCH nft 07/10] src: rename datatype name from tc_handle to classid Pablo Neira Ayuso
2016-08-17 13:29 ` [PATCH nft 08/10] src: simplify classid printing using %x instead of %04x Pablo Neira Ayuso
2016-08-17 13:30 ` [PATCH nft 09/10] src: meta priority support using tc classid Pablo Neira Ayuso
2016-08-17 13:30 ` [PATCH nft 10/10] parser_bison: redirect to :port for consistency with nat/masq statement Pablo Neira Ayuso

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1471440601-5327-1-git-send-email-pablo@netfilter.org \
    --to=pablo@netfilter.org \
    --cc=fw@strlen.de \
    --cc=netfilter-devel@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).