First batch of changes to rework how we iterate over the conntrack table. Historically, we had one table. When net namespaces were added, we got one table per namespace. Nowadays we again only have a single table (which considers netns during lookups). This series prepares for removal of some open-coded table iteration places. It also adds nf_ct_iterate_destroy(), to be used in module exit path when we need to inspect every conntrack entry regardless of namespace, then uses it from nat module exit path. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
