Project

General

Profile

Actions

Regression #13106

closed

``pfanchordrill`` treating errors as anchor names

Added by Jim Pingle over 2 years ago. Updated over 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
Rules / NAT
Target version:
Start date:
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
22.05
Release Notes:
Force Exclusion
Affected Version:
2.7.0
Affected Architecture:

Description

The pfanchordrill PHP playback script parses the output of the pf anchor list and uses it to recurse to find nested anchors. Recently pfctl began printing different errors than in the past which is now tripping up the script. This is a recent regression, it wasn't a problem in the last release.

: pfSsh.php playback pfanchordrill

ipsec rules/nat contents:

Anchor 'ipsec' not found. rules/nat contents:
pfctl: DIOCGETRULES: Invalid argument
pfctl: DIOCGETRULES: Invalid argument

pfctl: DIOCGETRULESETS: No such file or directory rules/nat contents:
pfctl: DIOCGETRULES: Invalid argument
pfctl: DIOCGETRULES: Invalid argument

pfctl: DIOCGETRULESETS: No such file or directory rules/nat contents:
pfctl: DIOCGETRULES: Invalid argument
pfctl: DIOCGETRULES: Invalid argument

pfctl: DIOCGETRULESETS: No such file or directory rules/nat contents:
pfctl: DIOCGETRULES: Invalid argument
pfctl: DIOCGETRULES: Invalid argument
[...]

This repeats indefinitely.

Easy fix is to toss out the errors instead of combining them into stdout.

To me, I have a fix.


Related issues

Related to Regression #13142: PHP shell ``pfanchordrill`` script produces errors on captive portal tablesResolvedJim Pingle

Actions
Actions

Also available in: Atom PDF