On Tue, Feb 28, 2023 at 06:15:49PM +0100, Phil Sutter wrote:
> Combining multiple corner-cases here:
>
> * Insert a rule before another new one which is not the first. Triggers
> NFTNL_RULE_ID assignment of the latter.
>
> * Delete the referenced new rule in the same batch again. Causes
> overwriting of the previously assigned RULE_ID.
>
> Consequently, iptables-nft-restore fails during *insert*, because the
> reference is dangling.
>
> Reported-by: Eric Garver <eric@xxxxxxxxxxx>
> Fixes: 760b35b46e4cc ("nft: Fix for add and delete of same rule in single batch")
> Signed-off-by: Phil Sutter <phil@xxxxxx>
Patch applied.
