src: add support to flush sets

You can use this new command to remove all existing elements in a set: # nft flush set filter xyz After this command, the set 'xyz' in table 'filter' becomes empty. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2016-12-05 22:45:22 +0100
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2016-12-05 22:50:46 +0100
commit: 23b760a774cf12dd18fb68a84d502662ae6eebd8 (patch)
tree: 243a95e6647ab44bcf1815e15ff229823257aaa9 /src/evaluate.c
parent: 1d398465831066c5e98fb2a58d7aa0547595de33 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/src/evaluate.c b/src/evaluate.c
index e11a455a..8a3da54e 100644
--- a/src/evaluate.c
+++ b/src/evaluate.c
@@ -2857,9 +2857,11 @@ static int cmd_evaluate_list(struct eval_ctx *ctx, struct cmd *cmd)
 static int cmd_evaluate_flush(struct eval_ctx *ctx, struct cmd *cmd)
 {
 	int ret;
+
 	ret = cache_update(cmd->op, ctx->msgs);
 	if (ret < 0)
 		return ret;
+
 	switch (cmd->obj) {
 	case CMD_OBJ_RULESET:
 		cache_flush();
@@ -2870,6 +2872,7 @@ static int cmd_evaluate_flush(struct eval_ctx *ctx, struct cmd *cmd)
 		 */
 	case CMD_OBJ_CHAIN:
 		/* Chains don't hold sets */
+	case CMD_OBJ_SET:
 		break;
 	default:
 		BUG("invalid command object type %u\n", cmd->obj);
author	Pablo Neira Ayuso <pablo@netfilter.org>	2016-12-05 22:45:22 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2016-12-05 22:50:46 +0100
commit	23b760a774cf12dd18fb68a84d502662ae6eebd8 (patch)
tree	243a95e6647ab44bcf1815e15ff229823257aaa9 /src/evaluate.c
parent	1d398465831066c5e98fb2a58d7aa0547595de33 (diff)