Date: Fri, 26 Mar 2004 18:49:16 +0100 (CET) From: "Benny v. M." <benny@pilgerer.de> To: FreeBSD-gnats-submit@FreeBSD.org Subject: kern/64778: IPFW2: incorrect parsing of 0.0.0.0/0 expression Message-ID: <200403261749.i2QHnGww042538@hamlet.pilgerer.de> Resent-Message-ID: <200403261750.i2QHo9tE057122@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 64778
>Category: kern
>Synopsis: IPFW2: incorrect parsing of 0.0.0.0/0 expression
>Confidential: no
>Severity: non-critical
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Fri Mar 26 09:50:09 PST 2004
>Closed-Date:
>Last-Modified:
>Originator: Benjamin von Mossner
>Release: FreeBSD 5.2.1-RELEASE-p3 i386
>Organization:
pilgerer.org e.V.
>Environment:
System: FreeBSD oberon.pilgerer.org 5.2.1-RELEASE-p3 FreeBSD 5.2.1-RELEASE-p3 #1: Mon Mar 22 17:53:55 CET 2004 root@oberon.pilgerer.org:/usr/obj/usr/src/sys/OBERON i386
>Description:
ipfw2 evaluates 0.0.0.0/0 ip/net expression to 'me' instead of 'any'.
>How-To-Repeat:
bensons:/home/benny# ipfw add allow ip from any to 0.0.0.0/0
00200 allow ip from any to me
bensons:/home/benny# ipfw add allow ip from 0.0.0.0/0 to any
00300 allow ip from me to any
bensons:/home/benny# ipfw add allow ip from \{ 0.0.0.0/0 or 1.1.1.1/1 \} to any
00400 allow ip from { me or 0.0.0.0/1 } to any
...
>Fix:
I'm not familiar enough with the ipfw2.c code. So no patch/fix available.
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200403261749.i2QHnGww042538>