bugzilla-daemon at netfilter.org
2020-Feb-04 22:14 UTC
[Bug 1405] New: Possible a bug in n libnftables deserializer. [invalid type]
https://bugzilla.netfilter.org/show_bug.cgi?id=1405 Bug ID: 1405 Summary: Possible a bug in n libnftables deserializer. [invalid type] Product: libnftnl Version: unspecified Hardware: All OS: All Status: NEW Severity: critical Priority: P5 Component: libnftnl Assignee: pablo at netfilter.org Reporter: sbezverk at cisco.com When I add update rule for a map, nft command does not fail but shows [invalid type] table ip kube-nfproxy-v4 { map sticky-set-svc-M53CN2XYVUHRQ7UB { type ipv4_addr : integer size 65535 timeout 6m } chain k8s-nfproxy-sep-TMVEFT7EX55F4T62 { update @sticky-set-svc-M53CN2XYVUHRQ7UB { ip saddr : 0x2 [invalid type] } } } Here is the command I use to add update rule: sudo nft add rule kube-nfproxy-v4 k8s-nfproxy-sep-TMVEFT7EX55F4T62 update @sticky-set-svc-M53CN2XYVUHRQ7UB { ip saddr timeout 30s : 2 } I tried to use Mark instead of integer for Key/Value of the set, same result with invalid value. I am running Ubuntu 19.10, with kernel: 5.4.15-050415-generic nft --version nftables v0.9.3 (Topsy) -- You are receiving this mail because: You are watching all bug changes. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200204/72c76ae7/attachment.html>
bugzilla-daemon at netfilter.org
2020-Feb-04 22:14 UTC
[Bug 1405] Possible a bug in n libnftables deserializer. [invalid type]
https://bugzilla.netfilter.org/show_bug.cgi?id=1405 Serguei Bezverkhi <sbezverk at cisco.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |phil at nwl.cc, | |sbezverk at cisco.com -- You are receiving this mail because: You are watching all bug changes. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200204/89fa64bb/attachment.html>
bugzilla-daemon at netfilter.org
2020-Feb-13 12:18 UTC
[Bug 1405] Possible a bug in n libnftables deserializer. [invalid type]
https://bugzilla.netfilter.org/show_bug.cgi?id=1405 Florian Westphal <fw at strlen.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED CC| |fw at strlen.de Status|NEW |RESOLVED --- Comment #1 from Florian Westphal <fw at strlen.de> --- now fixed in nftables.git master branch. -- You are receiving this mail because: You are watching all bug changes. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200213/7374e5f3/attachment.html>
Apparently Analagous Threads
- [Bug 1395] New: Add element fails with Error: Could not process rule: Invalid argument
- [Bug 1742] New: using nfqueue breaks SCTP connection (tracking)
- Gluster clients can't see directories that exist or are created within a mounted volume, but can enter them.
- Gluster clients can't see directories that exist or are created within a mounted volume, but can enter them.
- [Bug 1714] New: Stack smash: libnftables does not enforce string length limits for log prefixes