]> git.ipfire.org Git - thirdparty/nftables.git/commitdiff
projects / thirdparty / nftables.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: c09cb09)
log: netlink_linearize: don't set level if user didn't specify
authorPablo Neira Ayuso <pablo@netfilter.org>
Thu, 11 Sep 2014 13:17:17 +0000 (15:17 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Fri, 12 Sep 2014 07:57:05 +0000 (09:57 +0200)
The kernel will default on LOG_WARNING, to mimic iptables behaviour.

Reported-by: Ana Rey <anarey@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/netlink_linearize.c patch | blob | blame | history

diff --git a/src/netlink_linearize.c b/src/netlink_linearize.c
index 5eecd79122a803e2c223e9e4b5e6d2d31d7a0cdf..17375a5b6b68322476074189e216f642c081d737 100644 (file)
--- a/src/netlink_linearize.c
+++ b/src/netlink_linearize.c
@@ -586,7 +586,10 @@ static void netlink_gen_log_stmt(struct netlink_linearize_ctx *ctx,
                        nft_rule_expr_set_u16(nle, NFT_EXPR_LOG_QTHRESHOLD,
                                              stmt->log.qthreshold);
        } else {
-               nft_rule_expr_set_u32(nle, NFT_EXPR_LOG_LEVEL, stmt->log.level);
+               if (stmt->log.flags & STMT_LOG_LEVEL) {
+                       nft_rule_expr_set_u32(nle, NFT_EXPR_LOG_LEVEL,
+                                             stmt->log.level);
+               }
        }
        nft_rule_add_expr(ctx->nlr, nle);
 }
Mirror of git://git.netfilter.org/nftables