[PATCH wireguard-tools v3 0/3] ipc: linux: kernel-side netdevice filtering
Jason A. Donenfeld
Jason at zx2c4.com
Wed Mar 11 23:02:52 UTC 2026
On Fri, Jan 30, 2026 at 07:10:52PM +0000, Asbjørn Sloth Tønnesen wrote:
> Move device filtering to the kernel, thereby reducing netlink traffic.
>
> The first patch request kernel-side filtering.
>
> The second patch requests that the kernel doesn't include statistics
> in netdevice dumps.
>
> The third patch removes the old filtering code, as an
> additional step, which breaks on earlier than Linux v4.6.
>
> I assume that a dependency on Linux v4.6+ is acceptable for wg-tools
> now, as wireguard-linux-compat haven't been updated for 3 years.
Interesting series. If I'm going to apply this, I'm going to apply it,
and so the ifdefs you've added won't matter much; this will still break
wireguard-linux-compat. But maybe it's time to do so. So if you're up
for sending a v4, just do it like there's no yesterday.
Also, does this filtering need to also be added to the embeddable c
library contrib code?
Thanks for this patch. I'll start thinking seriously about
wireguard-linux-compat sunsetting.
Jason
More information about the WireGuard
mailing list