From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 18 08:50:03 2008 Return-Path: Delivered-To: freebsd-ipfw@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 773E116A417 for ; Mon, 18 Feb 2008 08:50:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 6476513C459 for ; Mon, 18 Feb 2008 08:50:03 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.2/8.14.2) with ESMTP id m1I8o3r9028744 for ; Mon, 18 Feb 2008 08:50:03 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.2/8.14.1/Submit) id m1I8o3vE028743; Mon, 18 Feb 2008 08:50:03 GMT (envelope-from gnats) Date: Mon, 18 Feb 2008 08:50:03 GMT Message-Id: <200802180850.m1I8o3vE028743@freefall.freebsd.org> To: freebsd-ipfw@FreeBSD.org From: "Vadim Goncharov" Cc: Subject: Re: bin/120720: [patch] [ipfw] unbreak POLA for ipfw table list X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Vadim Goncharov List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Feb 2008 08:50:03 -0000 The following reply was made to PR bin/120720; it has been noted by GNATS. From: "Vadim Goncharov" To: "Eugene Grosbein" Cc: bug-followup@freebsd.org, freebsd-ipfw@freebsd.org Subject: Re: bin/120720: [patch] [ipfw] unbreak POLA for ipfw table list Date: Mon, 18 Feb 2008 12:47:43 +0600 In-Reply-To: <200802151642.m1FGgGfQ002038@grosbein.pp.ru> References: <200802151642.m1FGgGfQ002038@grosbein.pp.ru> Hi Eugene Grosbein! On Fri, 15 Feb 2008 23:42:16 +0700 (KRAT); Eugene Grosbein wrote: > The command "ipfw table 1 list" used to format table values > associated with network addresses as 32-bit unsigned integers > until 6.3-RELEASE. Since 6.3-RELEASE, it interprets values > that are greater than 65535 as IP-addresses. > This change breaks many existing applications that expect the format > to be an integer, as it used to be since RELENG_4. > This change is not even documented. So, it breaks POLA and should be > corrected. >> How-To-Repeat: > ipfw table 1 add 1.1.1.1 $(date +%s) > ipfw table 1 list > This used to show something like "1.1.1.1/32 1203093427" before change > but now it shows something like "1.1.1.1/32 71.181.191.179" instead. Confirming. This breaks UNIX-time using scripts for many systems and was introduced by ``ipfw fwd tablearg'' handling commit to 6.2-STABLE in May 2007. POLA should be unbroken as far as possible. -- WBR, Vadim Goncharov. ICQ#166852181 mailto:vadim_nuclight@mail.ru [Moderator of RU.ANTI-ECOLOGY][FreeBSD][http://antigreen.org][LJ:/nuclight]