path: root/iptables/nft-shared.h
diff options
authorPhil Sutter <>2018-08-06 17:21:54 +0200
committerFlorian Westphal <>2018-08-06 18:17:39 +0200
commit295d5a809c67987db4d0961778d9800ba00926be (patch)
tree18dec7f56cc2b6fb550ac7f1a047365c171089ca /iptables/nft-shared.h
parent1679b2cb2cae2bb3ce8eff5444ba858a51310d4c (diff)
xtables-restore: Make COMMIT support configurable
Legacy ebtables-restore does not support COMMIT directive, so allow for callers of xtables_restore_parse() to toggle whether it is required or not. In iptables, omitting COMMIT may be used for syntax checking, so we must not add an implicit commit at EOF. Although ebtables/arptables legacy does not support COMMIT lines at all, this patch allows them in nft variants. If omitted, an implicit commit happens for them at EOF. Signed-off-by: Phil Sutter <> Signed-off-by: Florian Westphal <>
Diffstat (limited to 'iptables/nft-shared.h')
1 files changed, 1 insertions, 0 deletions
diff --git a/iptables/nft-shared.h b/iptables/nft-shared.h
index 5ef17a08..1f5c8a81 100644
--- a/iptables/nft-shared.h
+++ b/iptables/nft-shared.h
@@ -245,6 +245,7 @@ struct nft_xt_restore_parse {
FILE *in;
int testing;
const char *tablename;
+ bool commit;
struct nftnl_chain_list;