This series implements a rule list in chains to allow for per chain rule caches in iptables-nft as well as nftables.
A second patch then adds utility functions for chain and rule lookups, preparing for further optimizing these tasks in a transparent way since users won't open-code the chain/rule list traversal anymore. Phil Sutter (2): chain: Support per chain rules list chain: Add lookup functions for chain list and rules in chain include/internal.h | 1 + include/libnftnl/chain.h | 17 +++++ include/rule.h | 26 ++++++++ src/chain.c | 132 ++++++++++++++++++++++++++++++++++++++- src/libnftnl.map | 13 ++++ src/rule.c | 22 ------- 6 files changed, 188 insertions(+), 23 deletions(-) create mode 100644 include/rule.h -- 2.19.0
