On Tue, Aug 04, 2015 at 12:38:13PM +0200, Patrick McHardy wrote: > On 04.08, Pablo Neira Ayuso wrote: > > Use the generation mask approach to obtain a consistent list of set objects > > from netlink dump commands. > > > > Get rid of the internal NFT_SET_INACTIVE flag. > > In this case I don't see how deletion and creation in the same > batch will work at all since we don't check any active bits in > nf_tables_newset(). Right, the update of nf_tables_set_lookup() is missing. > We also have the problem that f.i. delset checks for activeness > in the current instead of the next generation. I guess you refer to the same problem I'm discussing in the other thread, right? As I said, this checking for add+delete in the same batch. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
