Displaying 1 result from an estimated 1 matches for "l3protocol".
Did you mean:
b3protocol
2018 Feb 01
4
[Bug 1222] New: nft list ruleset – infinite memory use
...f RAM:
---
table inet filter {
chain input {
ct original ip daddr {1.2.3.4} accept
}
}
---
(The {set} is important – a standalone address doesn't cause this issue.)
nft debug output ends with:
---
...
Evaluate list
list ruleset
^^^^^^^^^^^^^
inet filter input 2
[ ct load l3protocol => reg 1 ]
[ cmp eq reg 1 0x00000002 ]
[ ct load dst => reg 1 , dir original ]
[ lookup reg 1 set __set0 0x0 ]
[ immediate reg 0 accept ]
<begins eating memory at this point>
---
nftables 0.8.1
libnftnl 1.0.9
linux 4.9.78, 4.13.13
--
You are receiving this mail because:
You...