Bug 891769 - arptables-save swaps bytes in the ARP opcode
Summary: arptables-save swaps bytes in the ARP opcode
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Fedora
Classification: Fedora
Component: arptables_jf
Version: 17
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Jiri Popelka
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-01-03 22:58 UTC by Tom Eastep
Modified: 2013-01-20 03:35 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2013-01-18 20:30:01 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)

Description Tom Eastep 2013-01-03 22:58:29 UTC 
Description of problem: arptables-save swaps the bytes in the arpop.


Version-Release number of selected component (if applicable):arptables v0.0.8


How reproducible: Completely


Steps to Reproduce:
1. arptables -A OUT -o p3p1 -d 10.1.10.0/24  --arpop Request -j mangle --mangle-ip-s 10.1.10.11
2. arptables-save
3.
  
Actual results:

# Generated by arptables-save v0.0.8 on Thu Jan  3 14:44:30 2013
*filter
:IN ACCEPT [691:19348]
:OUT ACCEPT [140:3920]
:FORWARD ACCEPT [0:0]
-A OUT -d 10.1.10.0/255.255.255.0 -p  0100/ffff -o p3p1 -j mangle --mangle-ip-s 10.1.10.11 
COMMIT
# Completed on Thu Jan  3 14:44:30 2013

Expected results:

# Generated by arptables-save v0.0.8 on Thu Jan  3 14:44:30 2013
*filter
:IN ACCEPT [691:19348]
:OUT ACCEPT [140:3920]
:FORWARD ACCEPT [0:0]
-A OUT -d 10.1.10.0/255.255.255.0 -p  0001/ffff -o p3p1 -j mangle --mangle-ip-s 10.1.10.11 
COMMIT
# Completed on Thu Jan  3 14:44:30 2013

Additional info:

arptables -L correctly shows the arpop:

[root@sami shorewall]# arptables -L OUT -n -v
Chain OUT (policy ACCEPT 143 packets, 4004 bytes)
 pkts bytes target     in     out     source-ip            destination-ip       source-hw          destination-hw     hlen   op         hrd        pro       
    0     0 mangle     *      p3p1    0.0.0.0/0            10.1.10.0/24         00/00              00/00              any    0001       0000/0000  0000/0000 --mangle-ip-s 10.1.10.11 
[root@sami shorewall]#

Also, note the following:

[root@sami shorewall]# arptables-save | arptables-restore
[root@sami shorewall]# arptables -L OUT -n -v
Chain OUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     in     out     source-ip            destination-ip       source-hw          destination-hw     hlen   op         hrd        pro       
    0     0 mangle     *      p3p1    0.0.0.0/0            10.1.10.0/24         00/00              00/00              any    0100       0000/0000  0000/0000 --mangle-ip-s 10.1.10.11 
[root@sami shorewall]# 

This renders arptable-save and arptables-restore fairly useless as a means to save and restore an arptables configuration quickly.
Comment 1 Jiri Popelka 2013-01-08 18:37:04 UTC 
Thank you for the report Tom.
Comment 2 Fedora Update System 2013-01-08 18:46:19 UTC 
arptables_jf-0.0.8-31.fc18 has been submitted as an update for Fedora 18.
https://admin.fedoraproject.org/updates/arptables_jf-0.0.8-31.fc18
Comment 3 Fedora Update System 2013-01-08 18:53:56 UTC 
arptables_jf-0.0.8-25.fc17 has been submitted as an update for Fedora 17.
https://admin.fedoraproject.org/updates/arptables_jf-0.0.8-25.fc17
Comment 4 Fedora Update System 2013-01-09 08:56:25 UTC 
Package arptables_jf-0.0.8-25.fc17:
* should fix your issue,
* was pushed to the Fedora 17 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing arptables_jf-0.0.8-25.fc17'
as soon as you are able to.
Please go to the following url:
https://admin.fedoraproject.org/updates/FEDORA-2013-0476/arptables_jf-0.0.8-25.fc17
then log in and leave karma (feedback).
Comment 5 Fedora Update System 2013-01-18 20:30:03 UTC 
arptables_jf-0.0.8-25.fc17 has been pushed to the Fedora 17 stable repository.  If problems still persist, please make note of it in this bug report.
Comment 6 Fedora Update System 2013-01-20 03:35:16 UTC 
arptables_jf-0.0.8-31.fc18 has been pushed to the Fedora 18 stable repository.  If problems still persist, please make note of it in this bug report.
Note You need to log in before you can comment on or make changes to this bug.