On Sat, Feb 03, 2024 at 03:49:54PM +0000, Eric wrote: > On Friday, February 2nd, 2024 at 01:23, Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > > Works fine with -stable 5.15 and 6.1 here. > > > > Does your kernel turn on this? > > > > CONFIG_NETFILTER_NETLINK_HOOK=m > > Like Slavko, my test devices (both OpenWrt builds) have > > # CONFIG_NETFILTER_NETLINK_HOOK is not set > > I'll have to check and see how much it grows the kernel when enabled, as this > seems like it would be useful to have on by default. It should not take much, it is a simple netlink interface that iterates over a few existing datastructures. > Re the seg fault, I'm still trying to find a minimal reproducer, but it looks > like just about anything fires it off with k5.15 (I see it on x86, MIPS and > aarch64 devices). Strange that userspace crashes depending on the kernel version. What is your userspace nft version there? Thanks.
