diff options
author | Florian Westphal <fw@strlen.de> | 2019-04-23 15:16:20 +0200 |
---|---|---|
committer | Florian Westphal <fw@strlen.de> | 2019-04-27 01:08:08 +0200 |
commit | 0baa08fed43fa318eaa6ffe02673289343ac9cc0 (patch) | |
tree | 3060ebde032b213641fe62211ae9bf4f02d91785 /iptables/nft-shared.h | |
parent | 31dd3780a64935e3bcf83efb1a4354eed41f59ee (diff) |
xtables: unify user chain add/flush for restore case
The idea here is to move the 'flush' decision into the core, rather than
have the decision in the frontend.
This will be required later when "generation id" is passed to kernel.
In this case, we might have to add the flush when re-trying the
transaction.
Signed-off-by: Florian Westphal <fw@strlen.de>
Acked-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'iptables/nft-shared.h')
-rw-r--r-- | iptables/nft-shared.h | 7 |
1 files changed, 2 insertions, 5 deletions
diff --git a/iptables/nft-shared.h b/iptables/nft-shared.h index 019c1f20..de889ead 100644 --- a/iptables/nft-shared.h +++ b/iptables/nft-shared.h @@ -245,14 +245,11 @@ struct nft_xt_restore_cb { void (*table_new)(struct nft_handle *h, const char *table); struct nftnl_chain_list *(*chain_list)(struct nft_handle *h, const char *table); - int (*chain_user_flush)(struct nft_handle *h, - struct nftnl_chain_list *clist, - const char *table, const char *chain); int (*chain_set)(struct nft_handle *h, const char *table, const char *chain, const char *policy, const struct xt_counters *counters); - int (*chain_user_add)(struct nft_handle *h, const char *chain, - const char *table); + int (*chain_restore)(struct nft_handle *h, const char *chain, + const char *table); int (*table_flush)(struct nft_handle *h, const char *table); |