enabling ipv6 support broke ipv4 CIDR access list
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
conserver (Debian) |
Fix Released
|
Unknown
|
|||
conserver (Ubuntu) |
Fix Released
|
Undecided
|
dann frazier | ||
Focal |
Fix Released
|
Undecided
|
dann frazier | ||
Groovy |
Fix Released
|
Undecided
|
dann frazier |
Bug Description
[Impact]
IPs allowed via an IPv4 access list are denied after upgrading from bionic to focal.
[Test Case]
Define an access list, e.g.:
access * {
trusted 127.0.0.
allowed 127.0.0.
}
Then try to access a console from a system in the allowed range. It currently fails with:
$ console myhost
10.2.3.4: access from your host refused
[Fix]
https:/
[Regression Risk]
Currently, since all IPv4 access lists are busted, the only potential regression that comes to mind is if the new code has a bug in parsing certain CIDRs that leads to a crash.
Changed in conserver (Ubuntu Groovy): | |
assignee: | nobody → dann frazier (dannf) |
Changed in conserver (Ubuntu Focal): | |
assignee: | nobody → dann frazier (dannf) |
Changed in conserver (Ubuntu Focal): | |
status: | New → In Progress |
Changed in conserver (Debian): | |
status: | Unknown → Fix Released |
This bug was fixed in the package conserver - 8.2.4-2ubuntu1
---------------
conserver (8.2.4-2ubuntu1) groovy; urgency=medium
* Fix IPv4 CIDR-based access lists. LP: #1900747
-- dann frazier <email address hidden> Tue, 20 Oct 2020 11:48:00 -0600