Hi Pablo, I think the issue we saw when adding new chain with a given handle also occurs with rules: net/netfilter/nf_tables_api.c -- about line 838 net/netfilter/nf_tables_api.c -- about line 1560 I see that the kernel is intended to allocate a new handle in both cases (chain & rule), calling nf_tables_alloc_handle(). My personal thought is that this may be problematic, dont you? How to face this? Regards. -- Arturo Borrero González -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
