2019-12-16 23:08:32 +01:00
|
|
|
From 73536d15c80be96049289d96fc32122467c56b1d Mon Sep 17 00:00:00 2001
|
|
|
|
From: Matt Weber <matthew.weber@rockwellcollins.com>
|
|
|
|
Date: Mon, 16 Dec 2019 13:27:30 -0600
|
|
|
|
Subject: [PATCH] ebtables: replace ebtables-save perl script with bash rewrite
|
|
|
|
|
|
|
|
Fedora provides a bash replacement for the default ebtables-save perl
|
|
|
|
script. Using it allows the ebtables run-time dependency on perl to
|
|
|
|
be replaced with a runtime dependency on bash - which is lower
|
|
|
|
overhead and more likely to be present on typical embedded systems
|
|
|
|
already.
|
|
|
|
|
|
|
|
https://bugzilla.redhat.com/show_bug.cgi?id=746040
|
|
|
|
http://pkgs.fedoraproject.org/cgit/rpms/ebtables.git/tree/ebtables-save
|
|
|
|
|
|
|
|
Upstream:
|
|
|
|
https://github.com/openembedded/meta-openembedded/commit/7f723007364ba79de05447671e83d4eefb3097dc
|
|
|
|
|
|
|
|
Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
|
2020-04-27 23:26:52 +02:00
|
|
|
[ryanbarnett3@gmail.com:
|
|
|
|
- changed EBTABLES executable to /usr/sbin/ebtables-legacy
|
|
|
|
]
|
|
|
|
Signed-off-by: Ryan Barnett <ryanbarnett3@gmail.com>
|
2019-12-16 23:08:32 +01:00
|
|
|
---
|
|
|
|
ebtables-save.sh | 43 +++++++++++++++++++++++++++++++++++++++++++
|
|
|
|
1 file changed, 43 insertions(+)
|
|
|
|
create mode 100644 ebtables-save.sh
|
|
|
|
|
|
|
|
diff --git a/ebtables-save.sh b/ebtables-save.sh
|
|
|
|
new file mode 100644
|
|
|
|
index 0000000..2d7fc4e
|
|
|
|
--- /dev/null
|
|
|
|
+++ b/ebtables-save.sh
|
|
|
|
@@ -0,0 +1,43 @@
|
|
|
|
+#!/bin/bash
|
|
|
|
+
|
2020-04-27 23:26:52 +02:00
|
|
|
+EBTABLES="/usr/sbin/ebtables-legacy"
|
2019-12-16 23:08:32 +01:00
|
|
|
+
|
|
|
|
+[ -x "$EBTABLES" ] || exit 1
|
|
|
|
+
|
|
|
|
+echo "# Generated by ebtables-save v1.0 on $(date)"
|
|
|
|
+
|
|
|
|
+cnt=""
|
|
|
|
+[ "x$EBTABLES_SAVE_COUNTER" = "xyes" ] && cnt="--Lc"
|
|
|
|
+
|
|
|
|
+for table_name in $(grep -E '^ebtable_' /proc/modules | cut -f1 -d' ' | sed s/ebtable_//); do
|
|
|
|
+ table=$($EBTABLES -t $table_name -L $cnt)
|
|
|
|
+ [ $? -eq 0 ] || { echo "$table"; exit -1; }
|
|
|
|
+
|
|
|
|
+ chain=""
|
|
|
|
+ rules=""
|
|
|
|
+ while read line; do
|
|
|
|
+ [ -z "$line" ] && continue
|
|
|
|
+
|
|
|
|
+ case "$line" in
|
|
|
|
+ Bridge\ table:\ *)
|
|
|
|
+ echo "*${line:14}"
|
|
|
|
+ ;;
|
|
|
|
+ Bridge\ chain:\ *)
|
|
|
|
+ chain="${line:14}"
|
|
|
|
+ chain="${chain%%,*}"
|
|
|
|
+ policy="${line##*policy: }"
|
|
|
|
+ echo ":$chain $policy"
|
|
|
|
+ ;;
|
|
|
|
+ *)
|
|
|
|
+ if [ "$cnt" = "--Lc" ]; then
|
|
|
|
+ line=${line/, pcnt \=/ -c}
|
|
|
|
+ line=${line/-- bcnt \=/}
|
|
|
|
+ fi
|
|
|
|
+ rules="$rules-A $chain $line\n"
|
|
|
|
+ ;;
|
|
|
|
+ esac
|
|
|
|
+ done <<EOF
|
|
|
|
+$table
|
|
|
|
+EOF
|
|
|
|
+ echo -e $rules
|
|
|
|
+done
|
|
|
|
--
|
|
|
|
2.17.1
|
|
|
|
|