From: Pablo Neira Ayuso <pablo@netfilter.org>
Date: Wed, 17 Jul 2013 12:55:01 +0000 (+0200)
Subject: nft: break chain listing if only one if looked for
X-Git-Tag: v1.6.0~111^2~77
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=da07c930b9e2aaf8df24022a175b1774aa0bdd8b;p=thirdparty%2Fiptables.git

nft: break chain listing if only one if looked for

Break looping on the chain list if it finds the chain
that the user requested.

Based on patch from Tomasz Bursztyka.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
---

diff --git a/iptables/nft.c b/iptables/nft.c
index e6702ff4..2b9598b9 100644
--- a/iptables/nft.c
+++ b/iptables/nft.c
@@ -2501,6 +2501,10 @@ int nft_rule_list(struct nft_handle *h, const char *chain, const char *table,
 		}
 		__nft_rule_list(h, c, table, rulenum, format, print_firewall);
 
+		/* we printed the chain we wanted, stop processing. */
+		if (chain)
+			break;
+
 		found = true;
 
 next:
@@ -2599,6 +2603,10 @@ int nft_rule_list_save(struct nft_handle *h, const char *chain,
 
 		ret = __nft_rule_list(h, c, table, rulenum,
 				      counters ? 0 : FMT_NOCOUNTS, list_save);
+
+		/* we printed the chain we wanted, stop processing. */
+		if (chain)
+			break;
 next:
 		c = nft_chain_list_iter_next(iter);
 	}