On Wed, Jun 17, 2015 at 10:07:34PM +0200, Markus Koetter wrote:
> ---
> include/rule.h | 1 +
> src/netlink.c | 4 ++++
> 2 files changed, 5 insertions(+)
>
> diff --git a/include/rule.h b/include/rule.h
> index fbd327b..40cb98a 100644
> --- a/include/rule.h
> +++ b/include/rule.h
> @@ -119,6 +119,7 @@ struct chain {
> const char *type;
> struct scope scope;
> struct list_head rules;
> + uint32_t policy;
> };
>
> extern const char *chain_type_name_lookup(const char *name);
> diff --git a/src/netlink.c b/src/netlink.c
> index 84d9d27..17aabd4 100644
> --- a/src/netlink.c
> +++ b/src/netlink.c
> @@ -675,6 +675,10 @@ static struct chain *netlink_delinearize_chain(struct netlink_ctx *ctx,
> chain->flags |= CHAIN_F_BASECHAIN;
> }
>
> + if (nft_chain_attr_is_set(nlc, NFT_CHAIN_ATTR_TYPE))
> + chain->policy =
> + nft_chain_attr_get_u32(nlc, NFT_CHAIN_ATTR_POLICY);
> +
Are you using a working copy from git?
This patch seems to apply to an old version of nftables.
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
