tests: shell: Prevent lockout in nft-f/0008split_tables_0

Since packets traverse both tables, the accept rule in the first one is
ineffective due to the second table's drop policy. To prevent lockouts
when running the testsuite via SSH connection, set the second chain's
policy to accept as well.

Fixes: 337c7e0de3d9d ("tests: shell: make sure split table definition works via nft -f")
Signed-off-by: Phil Sutter <phil@nwl.cc>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

diff --git a/tests/shell/testcases/nft-f/0008split_tables_0 b/tests/shell/testcases/nft-f/0008split_tables_0
index 2bc6e46c852a6ed11515c923fbde16b0cfabec13..dd03545b172ac040678eeade4bb5cfc5dbd136bb 100755 (executable)
--- a/tests/shell/testcases/nft-f/0008split_tables_0
+++ b/tests/shell/testcases/nft-f/0008split_tables_0
@@ -19,7 +19,7 @@ RULESET="table inet filter {
 
 table inet filter {
        chain input {
-               type filter hook input priority 1; policy drop;
+               type filter hook input priority 1; policy accept;
        }
 }"
 
@@ -37,7 +37,7 @@ EXPECTED="table inet filter {
        }
 
        chain input {
-               type filter hook input priority 1; policy drop;
+               type filter hook input priority 1; policy accept;
        }
 }"