Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > > + case NFPROTO_INET: > > there is a special inet/ingress, maybe it requires a sanity check here? Right, this patch allows 'inet+ingress', whoch doesn't work either. > > static int nft_queue_init(const struct nft_ctx *ctx, > > const struct nft_expr *expr, > > const struct nlattr * const tb[]) > > @@ -82,6 +100,9 @@ static int nft_queue_init(const struct nft_ctx *ctx, > > Maybe .validate is a better place for this? Yep, I sent a v2.
