From 7849965d980fb630890a6ff25e5cadcbfd1aa0ef Mon Sep 17 00:00:00 2001
From: Nico Berlee <nico.berlee@on2it.net>
Date: Wed, 31 Mar 2021 17:05:12 +0200
Subject: [PATCH] nftables empy ruleset test fix by reorder --stateless

---
 include/tests_firewalls | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/tests_firewalls b/include/tests_firewalls
index 06798ea7..44d6c441 100644
--- a/include/tests_firewalls
+++ b/include/tests_firewalls
@@ -506,7 +506,7 @@
     Register --test-no FIRE-4540 --os Linux --preqs-met ${PREQS_MET} --weight L --network NO --root-only YES --category security --description "Check for empty nftables configuration"
     if [ ${SKIPTEST} -eq 0 ]; then
         # Check for empty ruleset
-        NFT_RULES_LENGTH=$(${NFTBINARY} list ruleset --stateless 2> /dev/null | ${EGREPBINARY} -v "table|chain|;$|}$|^$" | ${WCBINARY} -l)
+        NFT_RULES_LENGTH=$(${NFTBINARY} --stateless list ruleset 2> /dev/null | ${EGREPBINARY} -v "table|chain|;$|}$|^$" | ${WCBINARY} -l)
         if [ ${NFT_RULES_LENGTH} -le 3 ]; then
             FIREWALL_EMPTY_RULESET=1
             LogText "Result: this firewall set has 3 rules or less and is considered to be empty"