authorPhil Sutter <>2018-10-31 20:13:34 +0100
committerPablo Neira Ayuso <>2018-11-01 00:20:59 +0100
xtables: Fix for matching rules with wildcard interfaces
Due to xtables_parse_interface() and parse_ifname() being misaligned regarding interface mask setting, rules containing a wildcard interface added with iptables-nft could neither be checked nor deleted. As suggested, introduce extensions/iptables.t to hold checks for built-in selectors. This file is picked up by as-is. The only limitation is that iptables is being used for it, so no ip6tables-specific things can be tested with it (for now). Signed-off-by: Phil Sutter <> Signed-off-by: Pablo Neira Ayuso <>
