]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 26db6cd) | patch
src: improve rule error reporting
authorPablo Neira Ayuso <pablo@netfilter.org>
Mon, 19 Oct 2020 12:46:22 +0000 (14:46 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 20 Oct 2020 10:14:00 +0000 (12:14 +0200)
commitc85a7b0faad897b094b95153212ce351140721ea
treeaee5013e6d0ae78f6f5a97edc69f884fdfbbbc30tree
parent26db6cd9061757d9548cfadc4f921caa1aa6aff7commit | diff
src: improve rule error reporting

Kernel provides information regarding expression since
83d9dcba06c5 ("netfilter: nf_tables: extended netlink error reporting for
expressions").

A common mistake is to refer a chain which does not exist, e.g.

 # nft add rule x y jump test
 Error: Could not process rule: No such file or directory
 add rule x y jump test
                   ^^^^

Use the existing netlink extended error reporting infrastructure to
provide better error reporting as in the example above.

Requires Linux kernel patch 83d9dcba06c5 ("netfilter: nf_tables:
extended netlink error reporting for expressions").

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/netlink.h diff | blob | blame | history
src/mnl.c diff | blob | blame | history
src/netlink_linearize.c diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables