search for: nf_tables_check_loops

Displaying 2 results from an estimated 2 matches for "nf_tables_check_loops".

[Bug 1120] New: nf_tables_check_loops error on adding element to vmap
2017 Feb 09
4
[Bug 1120] New: nf_tables_check_loops error on adding element to vmap
https://bugzilla.netfilter.org/show_bug.cgi?id=1120 Bug ID: 1120 Summary: nf_tables_check_loops error on adding element to vmap Product: nftables Version: unspecified Hardware: x86_64 OS: Ubuntu Status: NEW Severity: trivial Priority: P5 Component: kernel Assignee: pablo at netfilter.org...
[Bug 1460] New: nft_table_validate() exceptionally slow for some configurations
2020 Aug 28
2
[Bug 1460] New: nft_table_validate() exceptionally slow for some configurations
...Severity: enhancement Priority: P5 Component: kernel Assignee: pablo at netfilter.org Reporter: steve at opendium.com Created attachment 606 --> https://bugzilla.netfilter.org/attachment.cgi?id=606&action=edit Example pathological configuration nf_tables_check_loops() and nft_table_validate() are executed when new rules are added to nftables. These are brute-force validation functions which walk over the entire ruleset, following all jumps and gotos. Chains which are jumped/goto'd to multiple times are walked over multiple times. nft_table_validate() ca...