Date: Mon, 18 Feb 2008 12:47:43 +0600 From: "Vadim Goncharov" <vadim_nuclight@mail.ru> To: "Eugene Grosbein" <eugen@kuzbass.ru> Cc: freebsd-ipfw@freebsd.org, bug-followup@freebsd.org Subject: Re: bin/120720: [patch] [ipfw] unbreak POLA for ipfw table list Message-ID: <opt6pjttq417d6mn@nuclight.avtf.net>
next in thread | raw e-mail | index | archive | help
In-Reply-To: <200802151642.m1FGgGfQ002038@grosbein.pp.ru> References: <200802151642.m1FGgGfQ002038@grosbein.pp.ru> Hi Eugene Grosbein! On Fri, 15 Feb 2008 23:42:16 +0700 (KRAT); Eugene Grosbein <eugen@kuzbass.ru> wrote: > The command "ipfw table 1 list" used to format table values > associated with network addresses as 32-bit unsigned integers > until 6.3-RELEASE. Since 6.3-RELEASE, it interprets values > that are greater than 65535 as IP-addresses. > This change breaks many existing applications that expect the format > to be an integer, as it used to be since RELENG_4. > This change is not even documented. So, it breaks POLA and should be > corrected. >> How-To-Repeat: > ipfw table 1 add 1.1.1.1 $(date +%s) > ipfw table 1 list > This used to show something like "1.1.1.1/32 1203093427" before change > but now it shows something like "1.1.1.1/32 71.181.191.179" instead. Confirming. This breaks UNIX-time using scripts for many systems and was introduced by ``ipfw fwd tablearg'' handling commit to 6.2-STABLE in May 2007. POLA should be unbroken as far as possible. -- WBR, Vadim Goncharov. ICQ#166852181 mailto:vadim_nuclight@mail.ru [Moderator of RU.ANTI-ECOLOGY][FreeBSD][http://antigreen.org][LJ:/nuclight]
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?opt6pjttq417d6mn>