Since kernel commit 8059918a1377 ("netfilter: nft_ct: sanitize layer 3
and 4 protocol number in custom expectations"), ct expectations
specifying an l3proto which does not match the table family are
rejected.
Signed-off-by: Phil Sutter <phil@xxxxxx>
---
tests/shell/testcases/maps/dumps/named_ct_objects.nft | 4 ++--
tests/shell/testcases/maps/named_ct_objects | 2 --
2 files changed, 2 insertions(+), 4 deletions(-)
diff --git a/tests/shell/testcases/maps/dumps/named_ct_objects.nft b/tests/shell/testcases/maps/dumps/named_ct_objects.nft
index 59f18932b28ad..457a08ebc32ca 100644
--- a/tests/shell/testcases/maps/dumps/named_ct_objects.nft
+++ b/tests/shell/testcases/maps/dumps/named_ct_objects.nft
@@ -4,7 +4,7 @@ table inet t {
dport 9876
timeout 1m
size 12
- l3proto ip
+ l3proto inet
}
ct expectation exp2 {
@@ -12,7 +12,7 @@ table inet t {
dport 9876
timeout 3s
size 13
- l3proto ip6
+ l3proto inet
}
ct helper myftp {
diff --git a/tests/shell/testcases/maps/named_ct_objects b/tests/shell/testcases/maps/named_ct_objects
index 61b87c1ab14a9..d0bf95012491c 100755
--- a/tests/shell/testcases/maps/named_ct_objects
+++ b/tests/shell/testcases/maps/named_ct_objects
@@ -9,7 +9,6 @@ table inet t {
dport 9876
timeout 1m
size 12
- l3proto ip
}
ct expectation exp2 {
@@ -17,7 +16,6 @@ table inet t {
dport 9876
timeout 3s
size 13
- l3proto ip6
}
ct helper myftp {
--
2.43.0
