Take advantage of the fact that interface name masks are needed only when submitting a legacy rule to the kernel. Drop all the code dealing with them and instead introduce a function to call from legacy variants if needed. Phil Sutter (3): xshared: Entirely ignore interface masks when saving rules xshared: Do not populate interface masks per default nft: Leave interface masks alone when parsing from kernel iptables/ip6tables.c | 6 ++- iptables/iptables.c | 6 ++- iptables/nft-ipv4.c | 3 +- iptables/nft-ipv6.c | 3 +- iptables/nft-ruleparse-arp.c | 5 +- iptables/nft-ruleparse-bridge.c | 3 +- iptables/nft-ruleparse-ipv4.c | 5 +- iptables/nft-ruleparse-ipv6.c | 3 +- iptables/nft-ruleparse.c | 33 ++++--------- iptables/nft-ruleparse.h | 3 +- iptables/xshared.c | 83 ++++++++++++++++++--------------- iptables/xshared.h | 8 ++-- 12 files changed, 76 insertions(+), 85 deletions(-) -- 2.41.0
