Fixing stuff

author: Kevin Krakauer <krakauer@google.com> 2020-01-21 13:37:25 -0800
committer: Kevin Krakauer <krakauer@google.com> 2020-01-21 13:37:25 -0800
commit: 47bc7550c0b8fcde7b3452bf536082e955882026 (patch)
tree: 00114329a0115ada0fd7091464b672bde9a36cfa /pkg/tcpip/iptables
parent: 62357a0afb5f4128a11dc9a1dfadd2957ec39e2d (diff)
1 files changed, 6 insertions, 15 deletions
diff --git a/pkg/tcpip/iptables/types.go b/pkg/tcpip/iptables/types.go
index 4f2a4d65e..a0bfc8b41 100644
--- a/pkg/tcpip/iptables/types.go
+++ b/pkg/tcpip/iptables/types.go
@@ -14,7 +14,9 @@
 
 package iptables
 
-import "gvisor.dev/gvisor/pkg/tcpip"
+import (
+	"gvisor.dev/gvisor/pkg/tcpip"
+)
 
 // A Hook specifies one of the hooks built into the network stack.
 //
@@ -161,21 +163,10 @@ type Rule struct {
 	Target Target
 }
 
-// TODO: This is gross.
-// TODO: Save this in SetEntries.
-// TODO: Utilize this when traversing tables.
+// IPHeaderFilter holds basic IP filtering data common to every rule.
 type IPHeaderFilter struct {
-	Source              [4]byte
-	Destination         [4]byte
-	SourceMask          [4]byte
-	DestinationMask     [4]byte
-	OutputInterface     string
-	InputInterface      string
-	OutputInterfaceMask string
-	InputInterfaceMask  string
-	Protocol            tcpip.TransportProtocolNumber
-	Flags               uint8
-	InverseFlags        uint8
+	// Protocol matches the transport protocol.
+	Protocol tcpip.TransportProtocolNumber
 }
 
 // A Matcher is the interface for matching packets.
author	Kevin Krakauer <krakauer@google.com>	2020-01-21 13:37:25 -0800
committer	Kevin Krakauer <krakauer@google.com>	2020-01-21 13:37:25 -0800
commit	47bc7550c0b8fcde7b3452bf536082e955882026 (patch)
tree	00114329a0115ada0fd7091464b672bde9a36cfa /pkg/tcpip/iptables
parent	62357a0afb5f4128a11dc9a1dfadd2957ec39e2d (diff)