path: root/iptables/nft-cache.c
authorPhil Sutter <>2019-10-07 13:49:08 +0200
committerPhil Sutter <>2019-10-17 19:02:29 +0200
nft-cache: Fetch only chains in nft_chain_list_get()
The function is used to return the given table's chains, so fetching chain cache is enough. Add calls to nft_build_cache() in places where a rule cache is required. Signed-off-by: Phil Sutter <> Acked-by: Pablo Neira Ayuso <>
diff --git a/iptables/nft-cache.c b/iptables/nft-cache.c
--- a/iptables/nft-cache.c
+++ b/iptables/nft-cache.c
@@ -393,7 +393,7 @@ struct nftnl_chain_list *nft_chain_list_get(struct nft_handle *h,
if (!t)
return NULL;
- nft_build_cache(h);
+ __nft_build_cache(h, NFT_CL_CHAINS);
return h->cache->table[t->type].chains;