Hi, On Fri, Sep 30, 2022 at 03:15:06PM +0200, Pablo Neira Ayuso wrote: [...] > Fine to apply this meanwhile. Thanks. I tried to find a better solution, but failed. IMO it should be enough to just refresh cache from scratch once the first event is received, but it seems the reproducer script is too aggressive even for that. > I wanted to fix this, but I found a few kernel bugs at that time, such as: > > commit 6fb721cf781808ee2ca5e737fb0592cc68de3381 > Author: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> > Date: Sun Sep 26 09:59:35 2021 +0200 > > netfilter: nf_tables: honor NLM_F_CREATE and NLM_F_EXCL in event notification > > which were not allowing me to infer the location accordingly, for > incrementally updating the cache. > > So I stopped for a while until these fixes propagate to the kernel. > > It's been 1 year even since, times flies... Same here. My backlog just keeps growing and with it the number of side-projects "to get back to later". Cheers, Phil
