bugzilla-daemon at netfilter.org
2014-Feb-05 18:53 UTC
[Bug 897] New: Numbers of caracter in the name of set.
https://bugzilla.netfilter.org/show_bug.cgi?id=897
Summary: Numbers of caracter in the name of set.
Product: nftables
Version: unspecified
Platform: x86_64
OS/Version: Debian GNU/Linux
Status: NEW
Severity: enhancement
Priority: P5
Component: nft
AssignedTo: pablo at netfilter.org
ReportedBy: anarey.spam at gmail.com
Estimated Hours: 0.0
You can add a set with a long name (16 or more characters) but "nft"
remanes it
to another name with 15 characters without showing a error message.
thenameofthissetistoolong (25 characters) => thenameofthisse (15
characters)(It
is not OK)
thisnamewith0016 (16 characters)=> thisnamewith001 (15 characters) (It is not
OK)
thisnamewith015 (15 characters)=> thisnamewith015 (15 characters)(It's
OK)
You can reproduce this bug by following these steps:
$ sudo nft add table ip test
$ sudo nft add chain ip test filter {type filter hook input priority 0 \; }
$ sudo nft add set ip test thenameofthissetistoolong { type ipv4_address\;}
$ sudo nft add set ip test thisnamewith015 { type ipv4_address\;}
$ sudo nft add set ip test thisnamewith0016 { type ipv4_address\;}
$ sudo nft list table ip test
table ip test {
set thenameofthisse {
type ipv4_address
}
set thisnamewith015 {
type ipv4_address
}
set thisnamewith001 {
type ipv4_address
}
chain filter {
type filter hook input priority 0;
}
}
I can always reproduce this bug.
The last commit in libmnl repo is "090a842 examples: use
mnl_socket_setsockopt"
The last commit in libnftnl repo is "076fd1e include: add cached copy of
linux/kernel.h"
The last commit in nftables repo is 11ba325 bump release number to 0.100
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
bugzilla-daemon at netfilter.org
2014-Apr-10 11:56 UTC
[Bug 897] Numbers of caracter in the name of set.
https://bugzilla.netfilter.org/show_bug.cgi?id=897
Pablo Neira Ayuso <pablo at netfilter.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |FIXED
--- Comment #1 from Pablo Neira Ayuso <pablo at netfilter.org> 2014-04-10
13:56:01 CEST ---
Fixed in upstream kernels:
http://git.kernel.org/cgit/linux/kernel/git/pablo/nf.git/commit/?id=a9bdd8365684810e3de804f8c51e52c26a5eccbb
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
Maybe Matching Threads
- [Bug 895] New: Add a 'ipv6_address' set into a ipv4 table and vice versa
- [Bug 896] New: You can not add the follow kinds of sets: mark, integer, string, lladdr
- [Bug 1062] New: Kernel IPv6 event filtering not working
- Conntrackd - fail at startup.
- [Bug 1123] New: conntrackd will not accept connection records into kernel table from another machine