bugzilla-daemon at netfilter.org
2017-Oct-21 22:05 UTC
[Bug 1195] New: 'list ruleset' of 'nft -f' outputs garbage while 'nft list ruleset' seems to work.
https://bugzilla.netfilter.org/show_bug.cgi?id=1195
Bug ID: 1195
Summary: 'list ruleset' of 'nft -f' outputs garbage
while 'nft
list ruleset' seems to work.
Product: nftables
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter: slyfox at inbox.ru
# This report is a valid nft file.
# $ uname -r
# 4.14.0-rc5-00009-g3728e6a255b5
# run as: 'nft -f nft.bug'
# This will output:
# table inet filter {
# chain local-input {
# iifname "lo" meta nfproto ipv4 payload @nh,96,64
0x7f0000017f000001 [invalid type] ip protocol udp counter packets 0 bytes 0
accept
# }
# }
# While when we run 'list ruleset' right afterwards decoding is fine:
# table inet filter {
# chain local-input {
# iifname "lo" ip saddr 127.0.0.1 ip daddr 127.0.0.1
ip
protocol udp counter packets 0 bytes 0 accept
# }
# }
# Note 'payload @nh,96,64 0x7f0000017f000001 [invalid type]' dump. Looks
like
decoding is slightly off.
# flush old state
flush ruleset
# filters
table inet filter {
# in real code there is a reference to this chain
chain local-input {
iifname "lo" ip saddr 127.0.0.1 ip daddr 127.0.0.1 ip protocol
udp
counter accept
}
}
# dump new state
list ruleset
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20171021/e547544b/attachment.html>
bugzilla-daemon at netfilter.org
2017-Oct-21 22:06 UTC
[Bug 1195] 'list ruleset' of 'nft -f' outputs garbage while 'nft list ruleset' seems to work.
https://bugzilla.netfilter.org/show_bug.cgi?id=1195 --- Comment #1 from Sergei Trofimovich <slyfox at inbox.ru> --- Created attachment 511 --> https://bugzilla.netfilter.org/attachment.cgi?id=511&action=edit nft.bug -- You are receiving this mail because: You are watching all bug changes. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20171021/5f78dbc8/attachment.html>
bugzilla-daemon at netfilter.org
2017-Oct-21 22:07 UTC
[Bug 1195] 'list ruleset' of 'nft -f' outputs garbage while 'nft list ruleset' seems to work.
https://bugzilla.netfilter.org/show_bug.cgi?id=1195
Sergei Trofimovich <slyfox at inbox.ru> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #511|application/octet-stream |text/plain
mime type| |
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20171021/4fe764ee/attachment.html>
bugzilla-daemon at netfilter.org
2020-Jan-28 23:56 UTC
[Bug 1195] 'list ruleset' of 'nft -f' outputs garbage while 'nft list ruleset' seems to work.
https://bugzilla.netfilter.org/show_bug.cgi?id=1195
kfm at plushkava.net changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |kfm at plushkava.net
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200128/fbd2e480/attachment.html>
Apparently Analagous Threads
- [Bug 1365] New: nft crashes in chain_print_declaration()
- [Bug 22867] New: [KMS] black screen on nouveau.ko module load
- Integration branch pushed out to btrfs-unstable
- [Bug 1284] New: nft doesn't accept interface names starting with a number
- [Bug 22179] New: [KMS] Black screen with KMS enabled