diff options
| author | Wenli Looi <wlooi@ucalgary.ca> | 2021-06-09 21:51:06 -0700 |
|---|---|---|
| committer | Rui Salvaterra <rsalvaterra@gmail.com> | 2022-02-21 23:21:09 +0000 |
| commit | 50979cc9c3805a72145440299b5c78e1be25c473 (patch) | |
| tree | 6675ad0b4f279b63db0728f8d3a0fdfda5c9ed23 | |
| parent | 0f16ea5f055722a532d4e68c7ba34ed084b48b37 (diff) | |
| download | firewall3-50979cc9c3805a72145440299b5c78e1be25c473.tar.gz | |
firewall3: remove unnecessary fw3_has_table
Given that firewall3 already skips the table when fw3_ipt_open fails,
there is no need for fw3_has_table.
Furthermore, /proc/net/ip_tables_names is not reliable under linux
containers (e.g. Docker/LXC/LXD). This patch will remove the need for
existing hacks required for OpenWrt to run on those platforms.
Reviewed-by: Rui Salvaterra <rsalvaterra@gmail.com>
Tested-by: Rui Salvaterra <rsalvaterra@gmail.com>
Tested-by: Ansuel Smith <ansuelsmth@gmail.com>
Signed-off-by: Wenli Looi <wlooi@ucalgary.ca>
| -rw-r--r-- | main.c | 15 | ||||
| -rw-r--r-- | utils.c | 9 | ||||
| -rw-r--r-- | utils.h | 2 |
3 files changed, 0 insertions, 26 deletions
@@ -195,9 +195,6 @@ stop(bool complete) for (table = FW3_TABLE_FILTER; table <= FW3_TABLE_RAW; table++) { - if (!fw3_has_table(family == FW3_FAMILY_V6, fw3_flag_names[table])) - continue; - if (!(handle = fw3_ipt_open(family, table))) continue; @@ -279,9 +276,6 @@ start(void) for (table = FW3_TABLE_FILTER; table <= FW3_TABLE_RAW; table++) { - if (!fw3_has_table(family == FW3_FAMILY_V6, fw3_flag_names[table])) - continue; - if (!(handle = fw3_ipt_open(family, table))) continue; @@ -350,9 +344,6 @@ reload(void) for (table = FW3_TABLE_FILTER; table <= FW3_TABLE_RAW; table++) { - if (!fw3_has_table(family == FW3_FAMILY_V6, fw3_flag_names[table])) - continue; - if (!(handle = fw3_ipt_open(family, table))) continue; @@ -379,9 +370,6 @@ start: for (table = FW3_TABLE_FILTER; table <= FW3_TABLE_RAW; table++) { - if (!fw3_has_table(family == FW3_FAMILY_V6, fw3_flag_names[table])) - continue; - if (!(handle = fw3_ipt_open(family, table))) continue; @@ -437,9 +425,6 @@ gc(void) for (table = FW3_TABLE_FILTER; table <= FW3_TABLE_RAW; table++) { - if (!fw3_has_table(family == FW3_FAMILY_V6, fw3_flag_names[table])) - continue; - if (!(handle = fw3_ipt_open(family, table))) continue; @@ -340,15 +340,6 @@ file_contains(const char *path, const char *str) } bool -fw3_has_table(const bool ipv6, const char *table) -{ - const char *path = ipv6 - ? "/proc/net/ip6_tables_names" : "/proc/net/ip_tables_names"; - - return file_contains(path, table); -} - -bool fw3_has_target(const bool ipv6, const char *target) { const char *path = ipv6 @@ -102,8 +102,6 @@ void fw3_command_close(void); void fw3_pr(const char *fmt, ...) __attribute__ ((format (printf, 1, 2))); -bool fw3_has_table(const bool ipv6, const char *table); - bool fw3_has_target(const bool ipv6, const char *target); bool fw3_lock(void); |