Date: Sun, 05 Apr 2020 18:49:58 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 245381] ipfw protocol or-block parsing bug when ip protocol is first in list Message-ID: <bug-245381-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D245381 Bug ID: 245381 Summary: ipfw protocol or-block parsing bug when ip protocol is first in list Product: Base System Version: 12.1-RELEASE Hardware: amd64 OS: Any Status: New Severity: Affects Some People Priority: --- Component: kern Assignee: bugs@FreeBSD.org Reporter: jpb@jimby.name ipfw cannot parse an or-block when protocol 'ip' is first in the list. To reproduce: # ipfw flush Are you sure? [yn] y Flushed all rules. # Add rule with or-block without 'ip' protocol - success # ipfw add 1000 deny \{ igmp or ggp or eigrp \} from any to me=20 01000 deny { igmp or ggp or eigrp } from any to me # Try to add or-block with 'ip' protocol first in list - error # ipfw add 1100 deny \{ ip or igmp or ggp or eigrp \} from any to me ipfw: invalid OR block # Reorder or-block so 'ip' protocol is not first in list - success # ipfw add 1200 deny \{ igmp or ip or ggp or eigrp \} from any to me 01200 deny { igmp or ggp or eigrp } from any to me #=20 Note also that the ip protocol does not show up in the last accepted rule. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-245381-227>