THis patch makes use of the new nft_rule_nlmsg_build_id function from libnftables for the delete operation. This lower the size of the netlink message sent to kernel when flushing the rules. Signed-off-by: Eric Leblond <eric@xxxxxxxxx> --- src/mnl.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/mnl.c b/src/mnl.c index 27b181a..3c07156 100644 --- a/src/mnl.c +++ b/src/mnl.c @@ -292,7 +292,7 @@ int mnl_nft_rule_batch_del(struct nft_rule *nlr, unsigned int flags, nft_rule_attr_get_u32(nlr, NFT_RULE_ATTR_FAMILY), NLM_F_ACK, seqnum); - nft_rule_nlmsg_build_payload(nlh, nlr); + nft_rule_nlmsg_build_id(nlh, nlr); if (!mnl_nlmsg_batch_next(batch)) mnl_batch_page_add(); -- 1.8.4.rc3 -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
