Phil Sutter <phil@xxxxxx> wrote: > > Problem is that the json input parser does cmd_add at the earliest opportunity. > > > > For a simple input file defining a table, set, set element and chain, we get > > following transaction: > > * add table > > * add set > > * add setelem > > * add chain > > > > This is rejected by the kernel, because the set element references a chain > > that does (not yet) exist. > > > > Normal input parser only allocates a CMD_ADD request for the table. > > > > Rest of the transactional commands are created much later, via nft_cmd_expand(), > > which walks "struct table" and then creates the needed CMD_ADD for the objects > > owned by that table. > > JSON parser simply does not support nested syntax, like, for instance: You mean, WONTFIX? Fine with me.
