From ed2aa2e30256596a944f1b15b9c48e22fc67ddf7 Mon Sep 17 00:00:00 2001 From: teastep Date: Tue, 10 Apr 2007 21:59:07 +0000 Subject: [PATCH] Update release notes with extension script info git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@5893 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb --- Shorewall-common/releasenotes.txt | 25 +++++++++++++++++-------- 1 file changed, 17 insertions(+), 8 deletions(-) diff --git a/Shorewall-common/releasenotes.txt b/Shorewall-common/releasenotes.txt index b207c39d7..ce24829b9 100644 --- a/Shorewall-common/releasenotes.txt +++ b/Shorewall-common/releasenotes.txt @@ -127,18 +127,27 @@ e) Because the compiler is now written in Perl, your compile-time Perl code to see how the compiler operates internally. I will produce documentation before the first official release. Compile-time extension scripts are executed using the Perl - 'do FILE' mechanism. + 'eval `cat `' mechanism. f) The 'refresh' command is now synonymous with 'restart'. -g) Some run-time extension scripts are no longer supported because they - make no sense (iptables-restore instantiates the new configuration - atomically). +g) Some run-time scripts will need to be changed to write their + iptables commands to file descriptor 3 in iptables-restore format + rather than running those commands. - continue - initdone - continue - refresh + maclog + + Details to follow. + + Some run-time scripts are simply eliminated because they no longer + make any sense under Shorewall-perl: + + initdone - The these two scripts assumed a model where the + continue chains were built in parallel. In the + iptables-restore model, chains are built serially + within tables and tables are build serially. + + refresh - The 'refresh' command is the same as 'restart' refreshed h) The /etc/shorewall/tos file now has zone-independent SOURCE and DEST