On Fri, May 02, 2025 at 11:37:04AM +0200, Daniel Gröber wrote:
Justification: Breaks unrelated software
(IMO needrestart is not "unrelated" here.)
I investigated a curious networking problem in Debian's autopkgtest infrastructure along with Paul. We found that a recent (innocent) nftables update caused needrestart to trigger a nftables.service restart which
flushed volatile firewall rules installed into the kernel by
lxc. Specifically by lxc-net.service see /usr/libexec/lxc/lxc-net.
Isn't this really a bug in nftables and maybe lxc? If restarting a
service wipes its configuration, maybe it should be fixed there.
Chris
--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)