Bug#1051592: Regression: Commit "netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID" breaks ruleset loading in linux-stable

2023-09-12 Thread Florian Westphal
Linux regression tracking (Thorsten Leemhuis) wrote: > On 12.09.23 00:57, Pablo Neira Ayuso wrote: > > Userspace nftables v1.0.6 generates incorrect bytecode that hits a new > > kernel check that rejects adding rules to bound chains. The incorrect > > bytecode adds the chain binding, attach it to

Bug#1051592: Regression: Commit "netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID" breaks ruleset loading in linux-stable

2023-09-12 Thread Florian Westphal
Timo Sigurdsson wrote: > > Linux regression tracking (Thorsten Leemhuis) > > wrote: > >> On 12.09.23 00:57, Pablo Neira Ayuso wrote: > >> > Userspace nftables v1.0.6 generates incorrect bytecode that hits a new > >> > kernel check that rejects adding rules to bound chains. The incorrect > >> > by

Bug#1002706: Fwd: nftables stateless NAT in raw table mangles fragmented UDP packets

2022-01-27 Thread Florian Westphal
Salvatore Bonaccorso wrote: > Hi, > > On Thu, Jan 27, 2022 at 06:26:10PM +0100, Steffen Weinreich wrote: > > Hi all, > > > > The patch made its way to mainline / latest > > > > Any chance to get it backported to 4.19? > > It would be need to have a backport sent sta...@vger.kernel.org . Once >