bugzilla-daemon at netfilter.org
2014-Feb-05 18:53 UTC
[Bug 897] New: Numbers of caracter in the name of set.
https://bugzilla.netfilter.org/show_bug.cgi?id=897 Summary: Numbers of caracter in the name of set. Product: nftables Version: unspecified Platform: x86_64 OS/Version: Debian GNU/Linux Status: NEW Severity: enhancement Priority: P5 Component: nft AssignedTo: pablo at netfilter.org ReportedBy: anarey.spam at gmail.com Estimated Hours: 0.0 You can add a set with a long name (16 or more characters) but "nft" remanes it to another name with 15 characters without showing a error message. thenameofthissetistoolong (25 characters) => thenameofthisse (15 characters)(It is not OK) thisnamewith0016 (16 characters)=> thisnamewith001 (15 characters) (It is not OK) thisnamewith015 (15 characters)=> thisnamewith015 (15 characters)(It's OK) You can reproduce this bug by following these steps: $ sudo nft add table ip test $ sudo nft add chain ip test filter {type filter hook input priority 0 \; } $ sudo nft add set ip test thenameofthissetistoolong { type ipv4_address\;} $ sudo nft add set ip test thisnamewith015 { type ipv4_address\;} $ sudo nft add set ip test thisnamewith0016 { type ipv4_address\;} $ sudo nft list table ip test table ip test { set thenameofthisse { type ipv4_address } set thisnamewith015 { type ipv4_address } set thisnamewith001 { type ipv4_address } chain filter { type filter hook input priority 0; } } I can always reproduce this bug. The last commit in libmnl repo is "090a842 examples: use mnl_socket_setsockopt" The last commit in libnftnl repo is "076fd1e include: add cached copy of linux/kernel.h" The last commit in nftables repo is 11ba325 bump release number to 0.100 -- Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
bugzilla-daemon at netfilter.org
2014-Apr-10 11:56 UTC
[Bug 897] Numbers of caracter in the name of set.
https://bugzilla.netfilter.org/show_bug.cgi?id=897 Pablo Neira Ayuso <pablo at netfilter.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |FIXED --- Comment #1 from Pablo Neira Ayuso <pablo at netfilter.org> 2014-04-10 13:56:01 CEST --- Fixed in upstream kernels: http://git.kernel.org/cgit/linux/kernel/git/pablo/nf.git/commit/?id=a9bdd8365684810e3de804f8c51e52c26a5eccbb -- Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are watching all bug changes.
Possibly Parallel Threads
- [Bug 895] New: Add a 'ipv6_address' set into a ipv4 table and vice versa
- [Bug 896] New: You can not add the follow kinds of sets: mark, integer, string, lladdr
- [Bug 1062] New: Kernel IPv6 event filtering not working
- Conntrackd - fail at startup.
- [Bug 1123] New: conntrackd will not accept connection records into kernel table from another machine