Bug#1001360: marked as done (nftables: nft returns "BUG: unsupported familynft: evaluate.c:2766...")

Wed, 23 Feb 2022 04:48:17 -0800 

Your message dated Wed, 23 Feb 2022 12:17:34 +0000
with message-id <[email protected]>
and subject line Re: [pkg-netfilter-team] Bug#1001360: Bug#1001360: nftables: 
nft returns "BUG: unsupported familynft: evaluate.c:2766..."
has caused the Debian Bug report #1001360,
regarding nftables: nft returns "BUG: unsupported familynft: evaluate.c:2766..."
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1001360: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1001360
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: nftables
Version: 1.0.1-1
Severity: normal
Tags: upstream

Dear Maintainer,

   * What led up to the situation?
Running nft -f with the following configuration appears to trigger the bug. 
I've removed what I think are the non-relevant parts.

table inet filter {
    set netflix-ips {
        type ipv4_addr;
        flags interval;
        elements = {
            52.0.131.132,
            23.221.228.214,
            8.207.84.236,
            54.204.25.0-54.204.25.16,
            3.23.189.144-3.23.189.160,
            34.195.253.0-34.195.253.128,
        }
    }

    chain kill-kids-netflix {
        ether saddr ba:db:ee:ff:5e:39 ip daddr @netflix-ips reject;
    }

   * What exactly did you do (or not do) that was effective (or
     ineffective)?
Not applicable.

   * What was the outcome of this action?
nft returns the following:

~$ sudo nft -f /etc/nftables.conf 
BUG: unsupported familynft: evaluate.c:2766: stmt_evaluate_reject_inet_family: 
Assertion `0' failed.
Aborted

   * What outcome did you expect instead?
nft to load the rules properly or complain about my often poor syntax.


-- System Information:
Debian Release: bookworm/sid
Architecture: amd64 (x86_64)

Kernel: Linux 5.15.0-2-amd64 (SMP w/2 CPU threads)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_CA:en
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages nftables depends on:
ii  libc6         2.32-4
ii  libedit2      3.1-20210910-1
ii  libnftables1  1.0.1-1

Versions of packages nftables recommends:
ii  netbase  6.3

Versions of packages nftables suggests:
pn  firewalld  <none>

-- Configuration Files:
/etc/nftables.conf changed [not included]

-- no debconf information

--- End Message ---
--- Begin Message --- 
Version: 1.0.2

Upstream has released a new version containing the fix.  This version
has now been packaged and the package accepted into unstable.

J.

Attachment: signature.asc
Description: PGP signature


--- End Message ---

Reply via email to