Bug#914706: [pkg-netfilter-team] Bug#914706: Add 1 more element to a set and you can delete the 1st element

2020-07-22 Thread Arturo Borrero Gonzalez 
Control: fixed -1 0.9.6-1

This should be fixed with nftables 0.9-6 and kernel 5.8.0 (which is about to be
released).

Bug#914706: [pkg-netfilter-team] Bug#914706: Add 1 more element to a set and you can delete the 1st element

2018-11-28 Thread Arturo Borrero Gonzalez 
Control: forwarded -1 https://bugzilla.netfilter.org/show_bug.cgi?id=1304

Bug#914706: Add 1 more element to a set and you can delete the 1st element

2018-11-28 Thread Eike Lohmann 
root@xmachine1:/home/user/testcase# nft add element filter S1 { 10.6.0.0/28 }
root@xmachine1:/home/user/testcase# nft list set filter S1
table ip filter {
    set S1 {
    type ipv4_addr
    flags interval
    elements = { 10.5.0.20/31, 10.6.0.0/28 }
    }
}
root@xmachine1:/home/user/testcase# nft delete element filter S1 { 10.5.0.20/31 
}
root@xmachine1:/home/user/testcase# nft list set filter S1
table ip filter {
    set S1 {
    type ipv4_addr
    flags interval
    elements = { 10.6.0.0/28 }
    }
}
root@xmachine1:/home/user/testcase# nft delete element filter S1 { 10.6.0.0/28 }
Error: Could not process rule: No such file or directory
delete element filter S1 { 10.6.0.0/28 }
^
root@xmachine1:/home/user/testcase#
root@xmachine1:/home/user/testcase#
root@xmachine1:/home/user/testcase# nft add element filter S1 { 10.7.0.0/28 }
root@xmachine1:/home/user/testcase# nft delete element filter S1 { 10.6.0.0/28 }
root@xmachine1:/home/user/testcase# nft list set filter S1
table ip filter {
    set S1 {
    type ipv4_addr
    flags interval
    elements = { 10.7.0.0/28 }
    }
}