Added Syntax Highlighting for nftables-firewall config file #3325
Conversation
|
Sorry, I do not know much about nftables syntax and syntax highlighting so I cannot review much. There is nothing else I can properly suggest but the header pattern is still at least not changed. |
|
Oh sorry, i didn`t see the "suggested change". I thought it had already been changed. |
Can someone else check the code? Or can you merge it simply? |
There was a problem hiding this comment.
It may look weird if groups in IPv6 addresses with hex digits are not highlighted but integers can be highlighted using this rule:
- constant.number: "\\b([1-9][0-9]*|0[0-7]*|0[Xx][0-9A-Fa-f]+)\\b"There is a lot of expressions in nftables but the keywords suggested are usually used so it may be fine highlighting them only for now.
I cannot merge pull requests but I tried reviewing again. I do not know much about syntax highlighting so I think it is better if another person reviews a bit. I think not adding all expressions and merging may be fine for now. I looked at |
i think we must not check everything at the first time. there is also a tool called |
|
A git client will have to be used, but can you please squash the commits into one and amend on the latest commit after editing the file? |
Oh sorry i didn`t used a git client. I have accepted your suggestions. I saw your message little bit to late. |
|
I am sorry that I did not respond early weeks ago too. I think the file is fine now, but I do not know if the pull request will be merged if the commits are not squashed. |
I don't know if i can Squash the commits. |
|
It is late here (3 AM) so I cannot assist much but something like these can be done: sudo apt install git openssh-client
ssh-keygen -t ed25519 -f ~/.ssh/id_github
# open https://github.com/settings/keys in browser
# copy ~/.ssh/id_github.pub (not id_github) content and add key
exec ssh-agent bash
ssh-add ~/.ssh/id_github
git clone ssh://[email protected]/theredcmdcraft/micro.git
# reset to commit before first commit in this pull request
git reset --soft dfd3df5~1
# write commit message then save
# message can be just something like "Add nftables syntax highlighting"
git commit
git push -u origin masterThere are still other pages about squashing you can read but this is what I would do. |
I tried my best. Please have a look if this is correct. I hope you`re fine now. |
|
I am really sorry, it was not a good idea replying at 3 AM and I did not include exec ssh-agent bash
ssh-add ~/.ssh/id_github
# reset to first commit in pull request
git reset --soft dfd3df52
# save only
git commit --amend --date=now
git push --force -u origin master |
Created nftables syntax highlighting
theredcmdcraft
force-pushed
the
master
branch
from
8bbb7a9 to
9e70322
Compare
Sorry for the realy late reply. In last weeks there was a lot of stuff that i had to do. So hopefully now it sould be correctly squashed. |
|
Do you can merge it? |
There was a problem hiding this comment.
It tested it with some of our rules at work and it looks like it needs some more polish with a new PR.
@theredcmdcraft Do you like to support here? 😉
In general numbers like in...
Lines 26 to 30 in 8c0e0fa
...would be nice too.
| - preproc: "\\b(add|define|flush|include|delete)\\b" | ||
| - symbol: "[-=/:;,@]" | ||
| - symbol.operator: "[<>.&|^!]|\\b(and|ge|gt|le|lt|or|xor)\\b" | ||
| - constant.string: '([\"]{1})(.*)([\"]{1})' |
There was a problem hiding this comment.
The string handling is broken and I recommend to use a region for this purpose, similar to:
Lines 40 to 42 in 8c0e0fa
| - statement: "\\b(accept|drop|goto|jump|log|masquerade|reject)\\b" | ||
| - preproc: "\\b(add|define|flush|include|delete)\\b" | ||
| - symbol: "[-=/:;,@]" | ||
| - symbol.operator: "[<>.&|^!]|\\b(and|ge|gt|le|lt|or|xor)\\b" |
There was a problem hiding this comment.
The != isn't properly handled as unequal-operator. I'd assume something similar to:
Line 23 in 8c0e0fa
Currently the = is tracked in line 14.
|
|
||
| rules: | ||
| - type: "\\b(chain|counter|map|rule|ruleset|set|table)\\b" | ||
| - type: "\\b(ether|icmp|icmpv6|icmpx|inet|ip|ip6|ipv4|ipv6|tcp|udp)\\b" |
There was a problem hiding this comment.
Could be reduced to i(cm)?p(x|(v?(4|6))?), but I'm unsure if it improves readability or regex compile time.
There was a problem hiding this comment.
i think not that this can be reduced, because of then would be things like chain, counter, map etc and tcp udp not highlighed.
There was a problem hiding this comment.
Argh, sure...forget to fill up: ether|inet|i(cm)?p(x|(v?(4|6))?)|tcp|udp 🤦♂️
There was a problem hiding this comment.
I`ve added your suggestions, you can try if you want to. If i should build it for you, please answer me, then i will build it and create a little release for you.
But you can clone the Repo, and do the described manual build. (Don`t forget to install golang before)
https://github.com/theredcmdcraft/micro/tree/nftables-improvements
There was a problem hiding this comment.
I doubt @JoeKar needs help with that. He is a maintainer of micro.
There was a problem hiding this comment.
I doubt @JoeKar needs help with that. He is a maintainer of micro.
Oops. I didn`t see the Collaborator Symbol on the right side.
There was a problem hiding this comment.
No problem, it was my fault not testing it earlier at work were we've some good examples of nftable rules. It was still on my todo before it was merged.
Ok, anyway...since this merge request is already merged we should create a new one to properly add the fixes into the nftables.yaml.
I suggest to do the following (after the "upstream" is available in your private fork too):
git check nftables-improvements
git fetch --all
git reset HEAD~1
git stash
git reset --hard upstream/master
git stash apply
git stash add runtime/syntax/nftables.yaml
git commit -m "Added Suggested changes"
git push --force-with-leaseCreate from this resulting branch (nftables-improvements) in your fork a new pull request to to our upstream repository. Sure you can follow your own approach to create a new clean PR.
Currently I've some doubts that the changed symbol and constant.string will work as expected.
There was a problem hiding this comment.
No problem, it was my fault not testing it earlier at work were we've some good examples of nftable rules. It was still on my todo before it was merged. Ok, anyway...since this merge request is already merged we should create a new one to properly add the fixes into the
nftables.yaml. I suggest to do the following (after the "upstream" is available in your private fork too):git check nftables-improvements git fetch --all git reset HEAD~1 git stash git reset --hard upstream/master git stash apply git stash add runtime/syntax/nftables.yaml git commit -m "Added Suggested changes" git push --force-with-leaseCreate from this resulting branch (nftables-improvements) in your fork a new pull request to to our upstream repository. Sure you can follow your own approach to create a new clean PR. Currently I've some doubts that the changed
symbolandconstant.stringwill work as expected.
Did i have to do these steps, when i synced my repo with this repo? I Synced the Fork, and then i created a new branch from the master branch, where i did the changes yesterday. Or can i simply create a new PR with my newly created branch as source. The Target is the micro master branch.
There was a problem hiding this comment.
Did i have to do these steps, when i synced my repo with this repo? I Synced the Fork, and then i created a new branch from the master branch, where i did the changes yesterday.
Sure, you can use a fully new/clean branch derived from the synced master to publish your changes within a new PR.
There was a problem hiding this comment.
The new PR is #3517
Created nftables syntax highlighting