On Sun, Sep 29, 2013 at 11:53:28AM +0200, Eric Leblond wrote: > The prefix building algorithm in netlink phase was incorrect in > IPv6. > > For example, when adding the following rule > nft add rule ip6 nat postrouting ip6 saddr 2::/64 --debug=all > > we had: > > ip6 nat postrouting 0 0 > [ payload load 16b @ network header + 8 => reg 1 ] > [ bitwise reg 1 = (reg=1 & 0x00000000 0x99361540 0x00007f8d 0x2e33a1eb ) ^ 0x00000000 0x00000000 0x00000000 0x00000000 ] > [ cmp eq reg 1 0x00000200 0x00000000 0x00000000 0x00000000 ] > > With the patch the result is as expected: > > ip6 nat postrouting 0 0 > [ payload load 16b @ network header + 8 => reg 1 ] > [ bitwise reg 1 = (reg=1 & 0xffffffff 0xffffffff 0x00000000 0x00000000 ) ^ 0x00000000 0x00000000 0x00000000 0x00000000 ] > [ cmp eq reg 1 0x00000200 0x00000000 0x00000000 0x00000000 ] Applied, thanks Eric! -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
