Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf

			 * Let nf_ct_resolve_clash() deal with this later.

			 */

			if (nf_ct_tuple_equal(&ignored_conntrack->tuplehash[IP_CT_DIR_ORIGINAL].tuple,

					      &ct->tuplehash[IP_CT_DIR_ORIGINAL].tuple))

					      &ct->tuplehash[IP_CT_DIR_ORIGINAL].tuple) &&

					      nf_ct_zone_equal(ct, zone, IP_CT_DIR_ORIGINAL))

				continue;

			NF_CT_STAT_INC_ATOMIC(net, found);

	struct nft_expr *expr_array[NFT_SET_EXPR_MAX] = {};

	struct nlattr *nla[NFTA_SET_ELEM_MAX + 1];

	u8 genmask = nft_genmask_next(ctx->net);

	u32 flags = 0, size = 0, num_exprs = 0;

	struct nft_set_ext_tmpl tmpl;

	struct nft_set_ext *ext, *ext2;

	struct nft_set_elem elem;

	struct nft_data_desc desc;

	enum nft_registers dreg;

	struct nft_trans *trans;

	u32 flags = 0, size = 0;

	u64 timeout;

	u64 expiration;

	int err, i;

	if (nla[NFTA_SET_ELEM_EXPR]) {

		struct nft_expr *expr;

		if (set->num_exprs != 1)

		if (set->num_exprs && set->num_exprs != 1)

			return -EOPNOTSUPP;

		expr = nft_set_elem_expr_alloc(ctx, set,

			return PTR_ERR(expr);

		expr_array[0] = expr;

		num_exprs = 1;

		if (set->exprs[0] && set->exprs[0]->ops != expr->ops) {

		if (set->num_exprs && set->exprs[0]->ops != expr->ops) {

			err = -EOPNOTSUPP;

			goto err_set_elem_expr;

		}

		struct nlattr *tmp;

		int left;

		if (set->num_exprs == 0)

			return -EOPNOTSUPP;

		i = 0;

		nla_for_each_nested(tmp, nla[NFTA_SET_ELEM_EXPRESSIONS], left) {

			if (i == set->num_exprs) {

			if (i == NFT_SET_EXPR_MAX ||

			    (set->num_exprs && set->num_exprs == i)) {

				err = -E2BIG;

				goto err_set_elem_expr;

			}

				goto err_set_elem_expr;

			}

			expr_array[i] = expr;

			num_exprs++;

			if (expr->ops != set->exprs[i]->ops) {

			if (set->num_exprs && expr->ops != set->exprs[i]->ops) {

				err = -EOPNOTSUPP;

				goto err_set_elem_expr;

			}

			i++;

		}

		if (set->num_exprs != i) {

		if (set->num_exprs && set->num_exprs != i) {

			err = -EOPNOTSUPP;

			goto err_set_elem_expr;

		}

		err = nft_set_elem_expr_clone(ctx, set, expr_array);

		if (err < 0)

			goto err_set_elem_expr_clone;

		num_exprs = set->num_exprs;

	}

	err = nft_setelem_parse_key(ctx, set, &elem.key.val,

			nft_set_ext_add(&tmpl, NFT_SET_EXT_TIMEOUT);

	}

	if (set->num_exprs) {

		for (i = 0; i < set->num_exprs; i++)

	if (num_exprs) {

		for (i = 0; i < num_exprs; i++)

			size += expr_array[i]->ops->size;

		nft_set_ext_add_length(&tmpl, NFT_SET_EXT_EXPRESSIONS,

		*nft_set_ext_obj(ext) = obj;

		obj->use++;

	}

	for (i = 0; i < set->num_exprs; i++)

	for (i = 0; i < num_exprs; i++)

		nft_set_elem_expr_setup(ext, i, expr_array);

	trans = nft_trans_elem_alloc(ctx, NFT_MSG_NEWSETELEM, set);

err_parse_key:

	nft_data_release(&elem.key.val, NFT_DATA_VALUE);

err_set_elem_expr:

	for (i = 0; i < set->num_exprs && expr_array[i]; i++)

	for (i = 0; i < num_exprs && expr_array[i]; i++)

		nft_expr_destroy(ctx, expr_array[i]);

err_set_elem_expr_clone:

	return err;