FireHOL / Bugs / #31 FireHOL does not work with Bash 3.2

#31 FireHOL does not work with Bash 3.2

Status: closed-fixed

Owner: nobody

Labels: None

Priority: 5

Updated: 2007-04-29

Created: 2006-12-02

Creator: David Watzke

Private: No

FireHOL does not work with Bash 3.2 and I think I have solution (applies on 1.226 and actual CVS version).

Discussion

David Watzke - 2006-12-02

Patch

firehol.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Carlos Rodrigues - 2007-02-25

Logged In: YES
user_id=358496
Originator: NO

From the patch, I think this may actually be a bash bug...

What do you mean by "not working"?

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Dominik - 2007-03-07

Logged In: YES
user_id=1523363
Originator: NO

FYI, similar bugs were reported for the Gentoo package for firehol. Gentoo patches firehol with a different workaround to prevent these problems, see http://bugs.gentoo.org/show_bug.cgi?id=153858 for more details.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Costa Tsaousis - 2007-03-07

Logged In: YES
user_id=582393
Originator: NO

Hi,

I am afraid the Gentoo folks did not solve the problem.
Check this:

# printf " %q\n" a b c "d e f g"
a
b
c
d\ e\ f\ g

Note the backslashes at the last line.
While:

# printf " %b\n" a b c "d e f g"
a
b
c
d e f g

Note that the backslashes are missing.
If the backslashes are not there, firehol will fail in certain cases.

To my understanding, the bash bug is not solved yet.

Costa

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Costa Tsaousis - 2007-03-07

Logged In: YES
user_id=582393
Originator: NO

Hi,

I am afraid the Gentoo folks did not solve the problem.
Check this:

# printf " %q\n" a b c "d e f g"
a
b
c
d\ e\ f\ g

Note the backslashes at the last line.
While:

# printf " %b\n" a b c "d e f g"
a
b
c
d e f g

Note that the backslashes are missing.
If the backslashes are not there, firehol will fail in certain cases.

To my understanding, the bash bug is not solved yet.

Costa

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

E. Viennet - 2007-04-20

Logged In: YES
user_id=396722
Originator: NO

This bug is important: Ubuntu now ships with bash 3.2.

A valid (ie working under bash 3.1) conf file gives a lot of errors (here the first one):

--------------------------------------------------------------------------------
ERROR : # 1.
WHAT : A runtime command failed to execute (returned error 2).
SOURCE : line 33 of /etc/firehol/firehol.conf
COMMAND : /sbin/iptables -t filter -A in_internet -p tcp -m state '' --state NEW \! --syn -j pr_internet_nosyn
OUTPUT :

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Costa Tsaousis - 2007-04-29

Logged In: YES
user_id=582393
Originator: NO

Hi,

This issue has been fixed in v1.253, currently in the CVS.

Costa

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Costa Tsaousis - 2007-04-29

status: open --> closed-fixed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link: