datatype: skip cgroupv2 rootfs in listing

cgroupv2 path is expressed from the /sys/fs/cgroup folder, update
listing to skip it.

 # nft add rule x y socket cgroupv2 level 1 "user.slice" counter
 # nft list ruleset
 table ip x {
        chain y {
                type filter hook input priority filter; policy accept;
                socket cgroupv2 level 1 "user.slice" counter
        }
 }

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

diff --git a/src/datatype.c b/src/datatype.c
index 743505de44b6d448a905cf3bc08794ce11f6079f..7267d60895d8464e98619aa705024ccd857b500a 100644 (file)
--- a/src/datatype.c
+++ b/src/datatype.c
@@ -1382,7 +1382,8 @@ static void cgroupv2_type_print(const struct expr *expr,
 
        cgroup_path = cgroupv2_get_path(SYSFS_CGROUPSV2_PATH, id);
        if (cgroup_path)
-               nft_print(octx, "\"%s\"", cgroup_path);
+               nft_print(octx, "\"%s\"",
+                         &cgroup_path[strlen(SYSFS_CGROUPSV2_PATH) + 1]);
        else
                nft_print(octx, "%" PRIu64, id);