thr3ads.net - netfilter buglog - [Bug 1721] New: nft list ruleset does not list symhash after tproxy target [Nov 2023]

If this information is useful, please help other people find it:
Share via:

bugzilla-daemon at netfilter.org

2023-Nov-02 09:14 UTC

[Bug 1721] New: nft list ruleset does not list symhash after tproxy target

https://bugzilla.netfilter.org/show_bug.cgi?id=1721

            Bug ID: 1721
           Summary: nft list ruleset does not list symhash after tproxy
                    target
           Product: nftables
           Version: 1.0.x
          Hardware: All
                OS: All
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: nft
          Assignee: pablo at netfilter.org
          Reporter: mydexterid at gmail.com

Hi!

I've just compiled nft from source (to check whether this has been already
fixed), and with current master (65d94af52f11a2c5a44d5ae8aa3891ccb648c666) this
is still an issue.

Adding a rule like this:
nft add rule inet vela whatever ct mark and 3221291007 == 3221250109 meta
nfproto ipv4 meta l4proto tcp counter tproxy ip to 127.0.0.1 : symhash mod 1
map { 0 : 36993, } comment "blabla"

then listing it with nft list ruleset, only shows up until the symhash part:
nft list ruleset
chain whatever {
        ct mark & 0xc000ffff == 0xc000603d meta nfproto ipv4 meta l4proto
tcp
counter packets 0 bytes 0 tproxy ip to 127.0.0.1 comment "blabla"
    }

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20231102/befc458e/attachment.html>

bugzilla-daemon at netfilter.org

2023-Nov-27 11:43 UTC

head link

[Bug 1721] nft list ruleset does not list symhash after tproxy target

https://bugzilla.netfilter.org/show_bug.cgi?id=1721

Pablo Neira Ayuso <pablo at netfilter.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|---                         |FIXED

--- Comment #1 from Pablo Neira Ayuso <pablo at netfilter.org> ---
Upstream fix:

http://git.netfilter.org/nftables/commit/?id=e4c9f9f7e0d1f83be18f6c4a418da503e9021b24

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20231127/46b366bf/attachment.html>

netfilter buglog - Nov 2023 - [Bug 1721] New: nft list ruleset does not list symhash after tproxy target

[Bug 1721] New: nft list ruleset does not list symhash after tproxy target

[Bug 1721] nft list ruleset does not list symhash after tproxy target