This series fixes the nft crash recently reported by Pablo with older (< 5.6) kernels: use the NFT_SET_CONCAT flag whenever we send a set including concatenated ranges, so that kernels not supporting them will not add them altogether, and we won't crash while trying to list the malformed sets that are added as a result. Stefano Brivio (2): include: Resync nf_tables.h cache copy src: Set NFT_SET_CONCAT flag for sets with concatenated ranges include/linux/netfilter/nf_tables.h | 2 ++ src/evaluate.c | 9 ++++++++- 2 files changed, 10 insertions(+), 1 deletion(-) -- 2.25.1
