Google Git
Sign in
googlers / maze / iptables / 837629fed24af7298fbf4cd28c7a51f24b70ee93^! / .
commit837629fed24af7298fbf4cd28c7a51f24b70ee93[log] [tgz]
authorTomasz Bursztyka <tomasz.bursztyka@linux.intel.com>Tue Feb 11 18:36:42 2014 +0200
committerPablo Neira Ayuso <pablo@netfilter.org>Wed Feb 12 10:10:10 2014 +0100
tree0d55f51f6c6623a1d12da8b75f16cc778ffdc72f
parent5cab9c3c8209e9491f0f252e03dd48ae4cb5ab63 [diff]
nft: Add useful debug output when a builtin table is created

This is useful to know if a builtin table is requested to be created.

Signed-off-by: Tomasz Bursztyka <tomasz.bursztyka@linux.intel.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

diff --git a/iptables/nft.c b/iptables/nft.c
index a45d599..36ac69c 100644
--- a/iptables/nft.c
+++ b/iptables/nft.c

@@ -451,6 +451,14 @@
 	nft_table_nlmsg_build_payload(nlh, t);
 	nft_table_free(t);
 
+#ifdef NLDEBUG
+	char tmp[1024];
+
+	nft_table_snprintf(tmp, sizeof(tmp), t, 0, 0);
+	printf("DEBUG: table: %s", tmp);
+	mnl_nlmsg_fprintf(stdout, nlh, nlh->nlmsg_len, sizeof(struct nfgenmsg));
+#endif
+
 	ret = mnl_talk(h, nlh, NULL, NULL);
 	if (ret < 0) {
 		if (errno != EEXIST)