On Mon, Nov 06, 2017 at 04:49:04PM +0000, Anders K. Pedersen | Cohaesio wrote: [...] > Since this patch was applied, I've not had any further problems with > nftables 0.8. Does it make sense that nftables 0.7 worked fine without > the patch, or was this just random luck? Yes. nftables 0.7 doesn't not provide indications to the kernel on the number of elements in the set descriptions, hence it selects the slowier hashtable representation, which was not buggy :-) -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
