[Bug 866] New: Missing newline with --list-rules

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Sun Oct 20 00:38:44 CEST 2013


https://bugzilla.netfilter.org/show_bug.cgi?id=866

           Summary: Missing newline with --list-rules
           Product: iptables
           Version: 1.4.x
          Platform: arm
        OS/Version: other
            Status: NEW
          Severity: normal
          Priority: P4
         Component: iptables
        AssignedTo: netfilter-buglog at lists.netfilter.org
        ReportedBy: eric.bock.1980 at gmail.com
   Estimated Hours: 2.0


It appears that Android has again been too lazy to include something that
should always exist; for example, iptables always emits this error which is
hardcoded into libc:

FIX ME! implement getprotobynumber() bionic/libc/bionic/stubs.c:456

My current filter table contains two references to quota2, and they are in the
INPUT chain.  I have no idea what inserts them; I hope Android does not use
them for something important.  The second may have originally appeared in the
OUTPUT chain and somehow migrated.

Chain INPUT (policy ACCEPT 273K packets, 85M bytes)
 pkts bytes target     prot opt in     out     source               destination
35912   47M            all  --  !lo+   any     anywhere             anywhere   
        UNKNOWN match `quota2'
 139K  164M            all  --  !lo+   any     anywhere             anywhere   
        UNKNOWN match `quota2'

This causes iptables to exit abruptly in the first line of the filter table. 
It would be better to display the entire table with an error after each line
that can't be completely interpreted; it is not guaranteed that the table is
the output of iptables commands.

[ 0 ] app_42 at android:/# iptables -vS 2>&1
-P INPUT ACCEPT -c 269887 84352741
-P FORWARD DROP -c 0 0
-P OUTPUT ACCEPT -c 152 8583
-N avastwall
-N avastwall-3g
-N avastwall-reject
-N avastwall-wifi
-N costly_shared
-N penalty_box
Can't find library for match `quota2'
-A INPUT ! -i lo+ [ 1 ] app_42 at android:/#

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.



More information about the netfilter-buglog mailing list