Hi,
When I add an element in a set and the set already contains the element,
the command fails with an error. Worse: I try to add multiple elements
and at least one of these elements is already in the set, the command
fails without adding any element. Why do you use this semantic? It would
be more ergonomic if you could just add elements in a set without
checking its content.
Have a good day,
Mikaël
Example:
```
# nft add set inet filter myset '{ type ipv4_addr; }'
# nft add element inet filter myset '{ 0.0.0.0 }'
# nft add element inet filter myset '{ 0.0.0.0 }'
<cmdline>:1:1-41: Error: Could not process rule: File exists
add element inet filter myset { 0.0.0.0 }
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
# nft add element inet filter myset '{ 0.0.0.0, 1.1.1.1 }'
<cmdline>:1:1-50: Error: Could not process rule: File exists
add element inet filter myset { 0.0.0.0, 1.1.1.1 }
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
# nft list set inet filter myset
set myset {
type ipv4_addr
elements = { 0.0.0.0}
}
```
Expected: no error and the set contains { 0.0.0.0, 1.1.1.1}.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html