When adding the "flow" traffic control filter in 'map' mode, the key parameter is processed incorrectly resulting in a NetlinkError: (22, 'Invalid argument') exception in many cases.
Internally, this function uses get_tca_keys to convert the 'key' parameter into a bit-mask. For convenience, the implementation is reproduced below:
def get_tca_keys(kwarg, name):
if name not in kwarg:
raise ValueError('Missing attribute: {0}'.format(name))
res = 0
keys = kwarg[name]
if name == 'hash':
keys = keys.split(',')
for key, value in tc_flow_keys.items():
if key in keys:
res |= value
return res
The problem is that in map mode (rather than hash mode), this function leaves keys as a plain string. When used with a value like "proto-src" this leads to the bits for both "proto-src" and "src" being combined rather than just "proto-src" since in will do a substring test when both its arguments are strings.
A potential fix would be:
if name == 'hash':
keys = keys.split(',')
+ else:
+ keys = [keys]
When adding the "flow" traffic control filter in 'map' mode, the
keyparameter is processed incorrectly resulting in aNetlinkError: (22, 'Invalid argument')exception in many cases.For example, the following invocation:
Internally, this function uses
get_tca_keysto convert the 'key' parameter into a bit-mask. For convenience, the implementation is reproduced below:The problem is that in map mode (rather than hash mode), this function leaves
keysas a plain string. When used with a value like"proto-src"this leads to the bits for both"proto-src"and"src"being combined rather than just"proto-src"sinceinwill do a substring test when both its arguments are strings.A potential fix would be: