From: Tomasz Bursztyka <tomasz.bursztyka@linux.intel.com>
Date: Tue, 14 May 2013 00:52:02 +0000 (+0000)
Subject: xtables: initialize xtables defaults even on listing rules
X-Git-Tag: v1.6.0~111^2~105
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=aa1601423175c90c37c3e6a3d6975d3e2eb74d1e;p=thirdparty%2Fiptables.git

xtables: initialize xtables defaults even on listing rules

Output of the tool should be the same as for iptables.

Signed-off-by: Tomasz Bursztyka <tomasz.bursztyka@linux.intel.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
---

diff --git a/iptables/nft.c b/iptables/nft.c
index e55c18c1..7e1b47bc 100644
--- a/iptables/nft.c
+++ b/iptables/nft.c
@@ -2483,6 +2483,10 @@ int nft_rule_list(struct nft_handle *h, const char *chain, const char *table,
 	struct nft_chain_list_iter *iter;
 	struct nft_chain *c;
 
+	/* If built-in chains don't exist for this table, create them */
+	if (nft_xtables_config_load(h, XTABLES_CONFIG_DEFAULT, 0) < 0)
+		nft_chain_builtin_init(h, table, NULL, NF_ACCEPT);
+
 	list = nft_chain_dump(h);
 
 	iter = nft_chain_list_iter_create(list);