[Bug 1762] New: coredump in --optimize
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Sat Jul 20 09:42:57 CEST 2024
https://bugzilla.netfilter.org/show_bug.cgi?id=1762
Bug ID: 1762
Summary: coredump in --optimize
Product: nftables
Version: git (please specify your HEAD)
Hardware: x86_64
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter: pgnd at dev-mail.net
#!/usr/sbin/nft -f
define wan = "eth0"
define lan = "eth1"
define vpn = "tun0"
define server = "10.10.10.1"
table nat {
chain prerouting {
type nat hook prerouting priority -100; policy accept;
iifname $wan tcp dport 10000 dnat to $server:10000;
}
chain postrouting {
type nat hook postrouting priority 100; policy accept;
oifname $vpn masquerade
oifname $wan masquerade
}
}
checks ok, no error
nft -c -f tmp.nft
(empty)
but optimize fails
nft: optimize.c:486: rule_build_stmt_matrix_stmts: Assertion `k >= 0'
failed.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20240720/dc3b561e/attachment.html>
More information about the netfilter-buglog
mailing list