18 #include <netinet/in.h>
19 #include <sys/types.h>
24 #include <linux/netfilter.h>
25 #include <linux/netfilter/nf_tables.h>
27 #include <libmnl/libmnl.h>
28 #include <libnftnl/set.h>
30 int main(
int argc,
char *argv[])
32 struct mnl_socket *nl;
33 char buf[MNL_SOCKET_BUFFER_SIZE];
41 struct nft_parse_err *err;
44 printf(
"Usage: %s <json-file>\n", argv[0]);
54 fd = open(argv[1], O_RDONLY);
60 if (read(fd, json,
sizeof(json)) < 0) {
66 err = nft_parse_err_alloc();
74 if (nft_set_parse(s, NFT_PARSE_JSON, json, err) < 0) {
75 nft_parse_perror(
"Unable to parse JSON file", err);
79 nft_set_snprintf(reprint,
sizeof(reprint), s, NFT_OUTPUT_JSON, 0);
80 printf(
"Parsed:\n%s\n", reprint);
82 family = nft_set_attr_get_u32(s, NFT_SET_ATTR_FAMILY);
86 nlh = nft_set_nlmsg_build_hdr(buf, NFT_MSG_NEWSET, family,
87 NLM_F_CREATE|NLM_F_ACK, seq);
88 nft_set_nlmsg_build_payload(nlh, s);
90 nft_parse_err_free(err);
92 nl = mnl_socket_open(NETLINK_NETFILTER);
94 perror(
"mnl_socket_open");
98 if (mnl_socket_bind(nl, 0, MNL_SOCKET_AUTOPID) < 0) {
99 perror(
"mnl_socket_bind");
102 portid = mnl_socket_get_portid(nl);
104 if (mnl_socket_sendto(nl, nlh, nlh->nlmsg_len) < 0) {
105 perror(
"mnl_socket_send");
109 ret = mnl_socket_recvfrom(nl, buf,
sizeof(buf));
111 ret = mnl_cb_run(buf, ret, seq, portid, NULL, NULL);
114 ret = mnl_socket_recvfrom(nl, buf,
sizeof(buf));
121 mnl_socket_close(nl);