interesting
/
nftables
mirror of https://github.com/google/nftables.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Compare commits

base: interesting:fa641e9ceaac6ec4c8352fe97a4f289af0f71525
Branches Tags
interesting:main
interesting:v0.3.0
interesting:v0.2.0
interesting:v0.1.0
..
compare: interesting:ca560006a17ac9ac2dbb0be4770fee60db112f30
Branches Tags
interesting:main
interesting:v0.3.0
interesting:v0.2.0
interesting:v0.1.0

2 Commits
fa641e9cea ... ca560006a1

Author SHA1 Message Date
Antonio Ojea ca560006a1
Merge 3d223a54e6 into 69f487d596 2025-02-02 15:55:52 +00:00
Antonio Ojea 3d223a54e6 nf2go: convert nftables rules to golang code 
One of the biggest barriers to adopt the netlink format for nftables is
the complexity of writing bytecode.

This commits adds a tool that allows to take an nftables dump and
generate the corresponding golang code and validating that the generated
code produces the exact same output.

Change-Id: I491b35e0d8062de33c67091dd4126d843b231838
Signed-off-by: Antonio Ojea <aojea@google.com>
 2025-02-02 15:55:41 +00:00
1 changed files with 1 additions and 1 deletions
Show Stats Expand all files Collapse all files

2
internal/nf2go/main.go
View File

@ -182,7 +182,7 @@ func main() {
log.Printf("Expected output:\n%s", string(expectedOutput)) log.Printf("Expected output:\n%s", string(expectedOutput))
log.Printf("Actual output:\n%s", actualOutput) log.Printf("Actual output:\n%s", actualOutput)
log.Fatalf("nftables ruleset mismatch:\n%s", cmp.Diff(string(expectedOutput), actualOutput)) log.Fatalf("nftables ruleset mismatch:\n%s", cmp.Diff(expectedOutput, actualOutput))
} }
if err := flushNFTRuleset(); err != nil { if err := flushNFTRuleset(); err != nil {