Arch Linux

Please read this before reporting a bug:

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#75094 - [nftables] regression introduced since 1.0.3 can prevent valid rulesets from loading

Attached to Project: Arch Linux
Opened by Kerin Millar (kerframil) - Friday, 17 June 2022, 03:06 GMT
Task Type Bug Report
Category Packages: Extra
Status Unconfirmed
Assigned To No-one
Architecture All
Severity High
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 0%
Votes 0
Private No



Following on from the sub-standard 1.0.3 release, a serious regression remains present. I recently rebooted an Arch box that uses nftables to find that my ruleset, which contains perfectly valid rules incorporating the log keyword, had not been loaded. As such, this is a request to incorporate commit 638af0ceb2b22307098bb2730822e148ef0b9424, which addresses the issue (assuming that 1.0.5 has not been released by the time that this request is considered). Note that the bug is easy enough to trigger that it could plausibly affect many deployed rulesets in the wild.

Additional info:

This report is for nftables-1.0.4-1. The aforementioned commit can be found below.

Steps to reproduce:

See the test case that the commit introduces.
This task depends upon