[Bug 1417] New: mapping to adjacent ranges is causing error in kernel 5.6, kernel 5.5 works fine
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Wed Apr 8 08:56:48 CEST 2020
https://bugzilla.netfilter.org/show_bug.cgi?id=1417
Bug ID: 1417
Summary: mapping to adjacent ranges is causing error in kernel
5.6, kernel 5.5 works fine
Product: nftables
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: critical
Priority: P5
Component: kernel
Assignee: pablo at netfilter.org
Reporter: karel at unitednetworks.cz
Created attachment 588
--> https://bugzilla.netfilter.org/attachment.cgi?id=588&action=edit
example of adjacent ranges causing error
After upgrading kernel from 5.5 to 5.6.2 our ruleset which includes mapping
packet sizes to counters fails to load. Problem is in adjacent ranges:
This fails (with File exists message):
counter name ip length map { 0-100 : "c1", 101-200 : "c2" }
After increasing start of second range by one it loads ok:
counter name ip length map { 0-100 : "c1", 102-200 : "c2" }
See attached examples.
Probably same bug as:
https://bugzilla.netfilter.org/show_bug.cgi?id=1415
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200408/89ab3525/attachment.html>
More information about the netfilter-buglog
mailing list