Linux Netfilter discussions
 help / color / mirror / Atom feed
* 'Did not kill' written out when redirecting 'nft list ruleset' in 0.9.8
@ 2021-02-24 23:00 Martin Gignac
  2021-02-24 23:37 ` Pablo Neira Ayuso
  0 siblings, 1 reply; 2+ messages in thread
From: Martin Gignac @ 2021-02-24 23:00 UTC (permalink / raw)
  To: netfilter

Hi,

With nft 0.9.8, if I run 'nft list ruleset' and redirect to a file, it
prints out "Did not kill":

    [root@s116r2l1fw01b magi]# nft -v
    nftables v0.9.8 (E.D.S.)
    [root@s116r2l1fw01b magi]# nft list ruleset > /dev/null
    Did not kill
    [root@s116r2l1fw01b magi]#

On 0.9.7, it does not:

    [root@s116r2l1fw01b magi]# nft -v
    nftables v0.9.7 (Anyface)
    [root@s116r2l1fw01b magi]# nft list ruleset > /dev/null
    [root@s116r2l1fw01b magi]#

Does anyone else see this behavior? If so, do you know what "Did not
kill" is/means?

I am on Fedora 33 (5.10.16-200.fc33.x86_64).

Thanks,
-Martin

^ permalink raw reply	[flat|nested] 2+ messages in thread
* Re: 'Did not kill' written out when redirecting 'nft list ruleset' in 0.9.8
  2021-02-24 23:00 'Did not kill' written out when redirecting 'nft list ruleset' in 0.9.8 Martin Gignac
@ 2021-02-24 23:37 ` Pablo Neira Ayuso
  0 siblings, 0 replies; 2+ messages in thread
From: Pablo Neira Ayuso @ 2021-02-24 23:37 UTC (permalink / raw)
  To: Martin Gignac; +Cc: netfilter

On Wed, Feb 24, 2021 at 06:00:23PM -0500, Martin Gignac wrote:
> Hi,
> 
> With nft 0.9.8, if I run 'nft list ruleset' and redirect to a file, it
> prints out "Did not kill":
> 
>     [root@s116r2l1fw01b magi]# nft -v
>     nftables v0.9.8 (E.D.S.)
>     [root@s116r2l1fw01b magi]# nft list ruleset > /dev/null
>     Did not kill
>     [root@s116r2l1fw01b magi]#
> 
> On 0.9.7, it does not:
> 
>     [root@s116r2l1fw01b magi]# nft -v
>     nftables v0.9.7 (Anyface)
>     [root@s116r2l1fw01b magi]# nft list ruleset > /dev/null
>     [root@s116r2l1fw01b magi]#
> 
> Does anyone else see this behavior? If so, do you know what "Did not
> kill" is/means?

Looks like stderr debugging slipped through master, it's already fixed in:

533565244d88 ("payload: check icmp dependency before removing previous icmp expression")

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2021-02-24 23:37 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2021-02-24 23:00 'Did not kill' written out when redirecting 'nft list ruleset' in 0.9.8 Martin Gignac
2021-02-24 23:37 ` Pablo Neira Ayuso

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox