Bug 2211076

Important: if this rebase instead contains *only bug fixes,* or *only enhancements*, select the correct option from the Doc Type drop-down list. Rebase package(s) to version: 1.0.4 Highlights, important fixes, or notable enhancements: - Misc Documentation fixes and enhancements - Support for 'typeof' keyword in set and map declarations to simplify element type specification - Fix for VLAN IDs in map targets, missing rounding truncated them - Add "sdif" and "sdifname" meta expression keywords - Fix for accidental byteorder conversion of host byteorder values in binop expressions - Improved error message when adding an interval element to a set without respective flag - Improved error messaging making use of kernel-provided offsets - Misc memleaks and use-after-free bugs fixed - Support for concatenated map targets, especially useful for NAT maps to contain both IP address and port - Support for 'offload' chain flag to request hardware offloading (if driver supports it) - Fix and extend 'nft --help' output - Fix for ineffective port argument with masquerade statement - Support for 'counter' in set definition, adding a counter to every element - Support for flowtable counter - In 'nft monitor', print also rules added after program start - Support for intervals and prefixes of IP addresses in NAT map targets - Add 'ct' expression 'id' key - Support sending "frag-needed" replies from reject statement - Support adding devices to an existing flowtable - Support deleting devices from an existing flowtable - Support creating a flowtable without devices - Support for anonymous chains, to be defined from jump/goto statements - Extended support for using variables in various spots - Support 'get element' command with maps - Fix for broken JSON output with 'reset' command - Fix for cache becoming out of sync in interactive mode - Comment support in set, map, table, object and chain declarations - Add a hashtable for cached chains, speeds up ruleset listing with many non-base chains - Support socket statement "wildcard" key - Track multiple transport protocols in context, e.g. to dnat both TCP and UDP packets via 'meta l4proto { tcp, udp } dnat to 1.2.3.4:8080' - Respect '--terse' flag with '--json' - Fix for missing set element counters in JSON output - Support for ingress hook chains in inet family - Fix for missing set element properties (e.g. comment or expiry) in last element of an interval set - Support for 'reject' statement in netdev family - Fix for missing NAT-related flags in JSON output - Support for combining '--echo' and '--json' with native syntax input