0017533: Support for iptables -m time Missing in Kernel

ID	Project	Category	View Status	Date Submitted	Last Update

0017533	CentOS-8	kernel	public	2020-06-23 16:52	2020-06-23 16:52

Reporter	bern
Priority	normal	Severity	major	Reproducibility	always
Status	new	Resolution	open
Product Version	8.2.2004
Target Version		Fixed in Version

Summary	0017533: Support for iptables -m time Missing in Kernel
Description	We administer firewall settings with ferm, so at least those have firewalld deactivated so as to use plain iptables instead. On CentOS 8, the "time" module is still mentioned in the iptables-extended manpage and apparently supported by the libs, but there's no matching kernel module and attempts to use it yield an error message: # ls -l /usr/lib64/xtables/_{comment,time}. -rwxr-xr-x. 1 root root 12288 Apr 24 15:51 /usr/lib64/xtables/libxt_comment.so -rwxr-xr-x. 1 root root 16496 Apr 24 15:51 /usr/lib64/xtables/libxt_time.so # ls -l /lib/modules//kernel/net/netfilter/_{comment,time}.* ls: cannot access '/lib/modules//kernel/net/netfilter/_time.': No such file or directory -rw-r--r--. 1 root root 1784 Dec 4 2019 /lib/modules/4.18.0-147.el8.x86_64/kernel/net/netfilter/xt_comment.ko.xz -rw-r--r--. 1 root root 1788 Jun 10 13:23 /lib/modules/4.18.0-193.6.3.el8_2.x86_64/kernel/net/netfilter/xt_comment.ko.xz # iptables -A OUTPUT -d 0.0.0.0 -m time --datestop 2020-07-01 -j ACCEPT iptables v1.8.4 (nf_tables): Couldn't load match `time':No such file or directory Try `iptables -h' or 'iptables --help' for more information. # iptables -A OUTPUT -d 0.0.0.0 -m comment --comment "Testing" -j ACCEPT # iptables -n -v -L OUTPUT Chain OUTPUT (policy ACCEPT 832 packets, 156K bytes) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- * 0.0.0.0/0 0.0.0.0 /* Testing */
Steps To Reproduce	1. Install and boot CentOS 8 2. See command and error message above (Expected: Either provide required kernel module, or remove mention of -m time from manpages)
Tags	No tags attached.

View Issue Details

Activities

Issue History