tree-wide: fix typo

author: Yu Watanabe <watanabe.yu+github@gmail.com> 2020-12-18 12:59:29 +0900
committer: Yu Watanabe <watanabe.yu+github@gmail.com> 2020-12-18 12:59:29 +0900
commit: 458610429f077db352768ca6106a1ffad9c7673d (patch)
tree: 9b58eecc58203feda4d2029cefe4dc51116df269 /src/shared/firewall-util-nft.c
parent: d7d1d18fd25e3d6c7f3d1841e0502fadb8cecbf9 (diff)
download: systemd-458610429f077db352768ca6106a1ffad9c7673d.tar.gz
1 files changed, 7 insertions, 4 deletions
diff --git a/src/shared/firewall-util-nft.c b/src/shared/firewall-util-nft.c
index 69bc233164..d48811a58a 100644
--- a/src/shared/firewall-util-nft.c
+++ b/src/shared/firewall-util-nft.c
@@ -314,12 +314,13 @@ static int nfnl_add_expr_masq(sd_netlink_message *m) {
         return sd_netlink_message_close_container(m); /* NFTA_LIST_ELEM */
 }
 
-/* -t nat -A POSTROUTING -p protocol -s source/pflen -o out_interface -d destionation/pflen -j MASQUERADE */
 static int sd_nfnl_message_new_masq_rule(sd_netlink *nfnl, sd_netlink_message **ret, int family,
                                          const char *chain) {
         _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *m = NULL;
         int r;
 
+        /* -t nat -A POSTROUTING -p protocol -s source/pflen -o out_interface -d destination/pflen -j MASQUERADE */
+
         r = sd_nfnl_nft_message_new_rule(nfnl, &m, family, NFT_SYSTEMD_TABLE_NAME, chain);
         if (r < 0)
                 return r;
@@ -351,7 +352,6 @@ static int sd_nfnl_message_new_masq_rule(sd_netlink *nfnl, sd_netlink_message **
         return 0;
 }
 
-/* -t nat -A PREROUTING -p protocol --dport local_port -i in_interface -s source/pflen -d destionation/pflen -j DNAT --to-destination remote_addr:remote_port */
 static int sd_nfnl_message_new_dnat_rule_pre(sd_netlink *nfnl, sd_netlink_message **ret, int family,
                                              const char *chain) {
         _cleanup_(sd_netlink_message_unrefp) sd_netlink_message *m = NULL;
@@ -359,6 +359,9 @@ static int sd_nfnl_message_new_dnat_rule_pre(sd_netlink *nfnl, sd_netlink_messag
         uint32_t local = RTN_LOCAL;
         int r;
 
+        /* -t nat -A PREROUTING -p protocol --dport local_port -i in_interface -s source/pflen
+         * -d destination/pflen -j DNAT --to-destination remote_addr:remote_port */
+
         r = sd_nfnl_nft_message_new_rule(nfnl, &m, family, NFT_SYSTEMD_TABLE_NAME, chain);
         if (r < 0)
                 return r;
@@ -471,7 +474,7 @@ static int sd_nfnl_message_new_dnat_rule_out(sd_netlink *nfnl, sd_netlink_messag
                 return r;
 
         /* 4th statement: dnat connection to address/port retrieved by the
-         * preceeding expression. */
+         * preceding expression. */
         proto_reg = NFT_REG32_02;
         r = nfnl_add_expr_dnat(m, family, NFT_REG32_01, proto_reg);
         if (r < 0)
@@ -788,7 +791,7 @@ static int nft_message_add_setelem_iprange(sd_netlink_message *m,
  * In the nftables case, everything gets removed. The next add operation
  * will yield -ENOENT.
  *
- * If we see -ENOENT on add, replay the inital table setup.
+ * If we see -ENOENT on add, replay the initial table setup.
  * If that works, re-do the add operation.
  *
  * Note that this doesn't protect against external sabotage such as a
author	Yu Watanabe <watanabe.yu+github@gmail.com>	2020-12-18 12:59:29 +0900
committer	Yu Watanabe <watanabe.yu+github@gmail.com>	2020-12-18 12:59:29 +0900
commit	458610429f077db352768ca6106a1ffad9c7673d (patch)
tree	9b58eecc58203feda4d2029cefe4dc51116df269 /src/shared/firewall-util-nft.c
parent	d7d1d18fd25e3d6c7f3d1841e0502fadb8cecbf9 (diff)
download	systemd-458610429f077db352768ca6106a1ffad9c7673d.tar.gz