src: Remove expire information from list stateless ruleset.

As expires is stateful information. This patch removes expire
information from list stateless ruleset. With nft -s option, the
ruleset will be as following.

table ip firewall {
        set host {
                type ipv4_addr
                flags timeout
                elements = { 10.0.0.2 timeout 10m }
        }
}

Signed-off-by: Varsha Rao <rvarsha016@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

diff --git a/src/expression.c b/src/expression.c
index 55dd391178c3b40e42581163c47096c6c782a86f..4fef83005c94f3b4b65a4311e23292cf02f209b9 100644 (file)
--- a/src/expression.c
+++ b/src/expression.c
@@ -962,7 +962,7 @@ static void set_elem_expr_print(const struct expr *expr)
                printf(" timeout ");
                time_print(expr->timeout / 1000);
        }
-       if (expr->expiration) {
+       if (!stateless_output && expr->expiration) {
                printf(" expires ");
                time_print(expr->expiration / 1000);
        }