[Bug 262590] [pf][patch] Anchor "blacklistd/" not correctly shown in pfctl -a \ -s rules

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 262590] [pf] Anchor "blacklistd/*" not correctly shown in pfctl -a \* -s rules"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sun, 10 Apr 2022 13:26:05 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=262590

--- Comment #11 from Matteo Riondato <matteo@FreeBSD.org> ---
(In reply to Kristof Provost from comment #10)

Hi Kristof,

Can you please tell me how you think the output of the test case I give in #5
should be printed?

In my opinion, when using "pfctl -a \* -s rules", it should be printed as
follows:

pass all flags S/SA keep state
anchor "parent" all {
  block drop in proto udp from any to any port = 23456
  anchor "child" all {
      block drop in proto icmp
  }
  block drop in proto tcp from any to any port = 34567
}
block drop in proto tcp from any to any port = 12345

You seem to think that it should not be printed like the above, and I don't
understand why, so I'd like to understand how you think it should be printed.

Right now the test case fails to print (in the sense that there are errors
emitted when recursing into the parent anchor, see #5), and I don't think it
should.

Thanks,
Matteo

-- 
You are receiving this mail because:
You are the assignee for the bug.