[iptables,14/17] xtables: Pass format to nft_rule_save()

Message ID	20180719163209.7987-15-phil@nwl.cc
State	Accepted
Delegated to:	Pablo Neira
Headers	show Return-Path: <netfilter-devel-owner@vger.kernel.org> From: Phil Sutter <phil@nwl.cc> To: Pablo Neira Ayuso <pablo@netfilter.org> Cc: Florian Westphal <fw@strlen.de>, netfilter-devel@vger.kernel.org Subject: [iptables PATCH 14/17] xtables: Pass format to nft_rule_save() Date: Thu, 19 Jul 2018 18:32:06 +0200 Message-Id: <20180719163209.7987-15-phil@nwl.cc> In-Reply-To: <20180719163209.7987-1-phil@nwl.cc> References: <20180719163209.7987-1-phil@nwl.cc> Sender: netfilter-devel-owner@vger.kernel.org Precedence: bulk
Series	xtables: Implement ebtables-{save,restore} \| expand [iptables,00/17] xtables: Implement ebtables-{save,restore} [iptables,01/17] xtables: Fix crash if nft_rule_list_get() fails [iptables,02/17] iptables: Replace memset by c99-style initializers [iptables,03/17] xtables: Merge {ip,arp}tables_command_state structs [iptables,04/17] xtables: Simplify struct nft_xt_ctx [iptables,05/17] xtables: Introduce rule_to_cs/clear_cs callbacks [iptables,06/17] xtables: Use new callbacks in nft_rule_print_save() [iptables,07/17] xtables: arp: Make rule_to_cs callback private [iptables,08/17] xtables: Get rid of nft_ipv{4,6}_print_header() [iptables,09/17] xtables: Merge nft_ipv{4,6}_parse_target() [iptables,10/17] xtables: Eliminate nft_ipv{4,6}_rule_find() [iptables,12/17] xtables: Rename {print,save}_rule functions [iptables,13/17] xtables: Introduce save_chain callback [iptables,14/17] xtables: Pass format to nft_rule_save() [iptables,15/17] xtables: Parameter to add_argv() may be const [iptables,16/17] xtables: Introduce nft_init_eb() [iptables,17/17] xtables: Implement ebtables-{save,restore}

Message ID

20180719163209.7987-15-phil@nwl.cc

State

Accepted

Delegated to:

Pablo Neira

Headers

From: Phil Sutter <phil@nwl.cc>
To: Pablo Neira Ayuso <pablo@netfilter.org>
Cc: Florian Westphal <fw@strlen.de>, netfilter-devel@vger.kernel.org
Subject: [iptables PATCH 14/17] xtables: Pass format to nft_rule_save()
Date: Thu, 19 Jul 2018 18:32:06 +0200
Message-Id: <20180719163209.7987-15-phil@nwl.cc>
In-Reply-To: <20180719163209.7987-1-phil@nwl.cc>
References: <20180719163209.7987-1-phil@nwl.cc>
Sender: netfilter-devel-owner@vger.kernel.org
Precedence: bulk

Series

xtables: Implement ebtables-{save,restore} | expand

Commit Message

Phil Sutter July 19, 2018, 4:32 p.m. UTC

Preparing ebtables-save implementation, allow for callers to pass format
bits to nft_rule_save() instead of just the 'counters' boolean.

Signed-off-by: Phil Sutter <phil@nwl.cc>
---
 iptables/nft.c          | 5 ++---
 iptables/nft.h          | 2 +-
 iptables/xtables-save.c | 2 +-
 3 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/iptables/nft.c b/iptables/nft.c
index 7889822af87f1..b1516692361d1 100644
--- a/iptables/nft.c
+++ b/iptables/nft.c
@@ -1375,7 +1375,7 @@  retry:
 	return list;
 }
 
-int nft_rule_save(struct nft_handle *h, const char *table, bool counters)
+int nft_rule_save(struct nft_handle *h, const char *table, unsigned int format)
 {
 	struct nftnl_rule_list *list;
 	struct nftnl_rule_list_iter *iter;
@@ -1397,8 +1397,7 @@  int nft_rule_save(struct nft_handle *h, const char *table, bool counters)
 		if (strcmp(table, rule_table) != 0)
 			goto next;
 
-		nft_rule_print_save(r, NFT_RULE_APPEND,
-				    counters ? 0 : FMT_NOCOUNTS);
+		nft_rule_print_save(r, NFT_RULE_APPEND, format);
 
 next:
 		r = nftnl_rule_list_iter_next(iter);
diff --git a/iptables/nft.h b/iptables/nft.h
index a3f5c202d8f57..17031871c8e3d 100644
--- a/iptables/nft.h
+++ b/iptables/nft.h
@@ -98,7 +98,7 @@  int nft_rule_delete_num(struct nft_handle *h, const char *chain, const char *tab
 int nft_rule_replace(struct nft_handle *h, const char *chain, const char *table, void *data, int rulenum, bool verbose);
 int nft_rule_list(struct nft_handle *h, const char *chain, const char *table, int rulenum, unsigned int format);
 int nft_rule_list_save(struct nft_handle *h, const char *chain, const char *table, int rulenum, int counters);
-int nft_rule_save(struct nft_handle *h, const char *table, bool counters);
+int nft_rule_save(struct nft_handle *h, const char *table, unsigned int format);
 int nft_rule_flush(struct nft_handle *h, const char *chain, const char *table);
 int nft_rule_zero_counters(struct nft_handle *h, const char *chain, const char *table, int rulenum);
 
diff --git a/iptables/xtables-save.c b/iptables/xtables-save.c
index c19c9991e5a60..e6bad32fa0b81 100644
--- a/iptables/xtables-save.c
+++ b/iptables/xtables-save.c
@@ -70,7 +70,7 @@  __do_output(struct nft_handle *h, const char *tablename, bool counters)
 	/* Dump out chain names first,
 	 * thereby preventing dependency conflicts */
 	nft_chain_save(h, chain_list, tablename);
-	nft_rule_save(h, tablename, counters);
+	nft_rule_save(h, tablename, counters ? 0 : FMT_NOCOUNTS);
 
 	now = time(NULL);
 	printf("COMMIT\n");

[iptables,14/17] xtables: Pass format to nft_rule_save()

Commit Message

Patch