On Wed, Mar 08, 2017 at 04:43:25PM +0100, Phil Sutter wrote: > This originally came up when accidentally calling iptables-translate as > unprivileged user - nft_compatible_revision() then fails every time, > making the translator fall back to using revision 0 only which often > leads to failed translations (due to missing xlate callback). > > The bottom line is there is no need to check what revision of a given > iptables match the kernel supports when it is only to be translated into > an nftables equivalent. So just assign a dummy callback returning good > for any revision being asked for. Applied, thanks a lot Phil. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
