Signed-off-by: Patrick McHardy <kaber@xxxxxxxxx> --- src/parser_bison.y | 19 +++++++------------ 1 file changed, 7 insertions(+), 12 deletions(-) diff --git a/src/parser_bison.y b/src/parser_bison.y index ea3ff52..b86381d 100644 --- a/src/parser_bison.y +++ b/src/parser_bison.y @@ -409,7 +409,7 @@ static void location_update(struct location *loc, struct location *rhs, int n) %destructor { handle_free(&$$); } table_spec tables_spec chain_spec chain_identifier ruleid_spec ruleset_spec %type <handle> set_spec set_identifier %destructor { handle_free(&$$); } set_spec set_identifier -%type <val> handle_spec family_spec family_spec_explicit position_spec +%type <val> handle_spec family_spec family_spec_explicit position_spec chain_policy %type <table> table_block_alloc table_block %destructor { close_scope(state); table_free($$); } table_block_alloc @@ -1071,26 +1071,21 @@ hook_spec : TYPE STRING HOOK STRING PRIORITY NUM } ; -policy_spec : POLICY ACCEPT +policy_spec : POLICY chain_policy { if ($<chain>0->policy != -1) { erec_queue(error(&@$, "you cannot set chain policy twice"), state->msgs); YYERROR; } - $<chain>0->policy = NF_ACCEPT; - } - | POLICY DROP - { - if ($<chain>0->policy != -1) { - erec_queue(error(&@$, "you cannot set chain policy twice"), - state->msgs); - YYERROR; - } - $<chain>0->policy = NF_DROP; + $<chain>0->policy = $2; } ; +chain_policy : ACCEPT { $$ = NF_ACCEPT; } + | DROP { $$ = NF_DROP; } + ; + identifier : STRING ; -- 2.1.0 -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html