[Bug 1739] meta mark 0x80000000 display error
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Tue Mar 19 12:54:08 CET 2024
https://bugzilla.netfilter.org/show_bug.cgi?id=1739
--- Comment #2 from Pablo Neira Ayuso <pablo at netfilter.org> ---
(In reply to Phil Sutter from comment #1)
> It is merely a display issue at least:
>
> # nft --debug=netlink add rule t c 'meta mark and 0x80000000 != 0'
>
> ip t c
> [ meta load mark => reg 1 ]
> [ bitwise reg 1 = ( reg 1 & 0x80000000 ) ^ 0x00000000 ]
> [ cmp neq reg 1 0x00000000 ]
>
> # nft --debug=netlink list chain t c
> ip t c 2
> [ meta load mark => reg 1 ]
> [ bitwise reg 1 = ( reg 1 & 0x80000000 ) ^ 0x00000000 ]
> [ cmp neq reg 1 0x00000000 ]
>
> table ip t {
> chain c {
> meta mark != 0x00000000/1
> }
> }
It is possible to disable prefix notation in meta mark if it is difficult to
understand.
0x80000000 is translated into a prefix which is /1
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20240319/cd824202/attachment.html>
More information about the netfilter-buglog
mailing list