On 2018-02-20 16:07, Pablo Neira Ayuso wrote:
> On Tue, Feb 20, 2018 at 03:49:54PM +0100, Felix Fietkau wrote:
>> Avoids having nf_flow_table depend on nftables (useful for future
>> iptables backport work)
>>
>> Signed-off-by: Felix Fietkau <nbd@xxxxxxxx>
>> ---
>> include/net/netfilter/nf_flow_table.h | 1 +
>> include/net/netfilter/nf_tables.h | 3 ---
>> net/netfilter/nf_flow_table_core.c | 21 ++++++++++++++++++---
>> net/netfilter/nf_tables_api.c | 17 -----------------
>> 4 files changed, 19 insertions(+), 23 deletions(-)
>>
>> diff --git a/include/net/netfilter/nf_flow_table.h b/include/net/netfilter/nf_flow_table.h
>> index f876e32a60b8..ab408adba688 100644
>> --- a/include/net/netfilter/nf_flow_table.h
>> +++ b/include/net/netfilter/nf_flow_table.h
>> @@ -21,6 +21,7 @@ struct nf_flowtable_type {
>> };
>>
>> struct nf_flowtable {
>> + struct list_head list;
>
> After this we have two lists? One in 'struct nft_flowtable' and
> another in 'struct nf_flowtable', right?
Right. The one in struct nft_flowtable is per nftables table, the one in
struct nf_flowtable is global.
- Felix
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
