On Fri, Jan 01, 2021 at 11:02:26AM +0200, Eyal Birger wrote: > nfct_nlmsg_build() may fail for different reasons, for example if > insufficient parameters exist in the ct object. The resulting nlh would > not contain any of the ct attributes. > > Some conntrack operations would still operate in such case, for example > an IPCTNL_MSG_CT_DELETE message would just delete all existing conntrack > entries. > > While the example as it is does supply correct parameters, it's safer > as reference to validate the return value. Applied, thanks.
