fix allowed group name length

the allowed length for an iptable chain is 28 chars we had a max set of 20 but a format of GROUP-<name>-IN and GROUP-<name>-OUT where <name> is the group name but GROUP--OUT are 10 chars so we just allow 18 chars max Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>
2025-01-09 01:18:04 +03:00 · 2016-06-03 15:14:24 +02:00 · 2016-06-03 15:14:24 +02:00 · 5c53cde452
commit 5c53cde452
parent f76f3caefb
2 changed files with 5 additions and 1 deletions
--- a/debian/changelog
+++ b/debian/changelog
@ -2,6 +2,10 @@ pve-firewall (2.0-28) unstable; urgency=medium

  * use pve-common's ipv4_mask_hash_localnet

+  * fix allowed group name length
+
+  * make group digest stable
+
 -- Proxmox Support Team <support@proxmox.com>  Fri, 03 Jun 2016 11:01:47 +0200

 pve-firewall (2.0-27) unstable; urgency=medium
--- a/src/PVE/Firewall.pm
+++ b/src/PVE/Firewall.pm
@ -50,7 +50,7 @@ our $ip_alias_pattern = '[A-Za-z][A-Za-z0-9\-\_]+';

 my $max_alias_name_length = 64;
 my $max_ipset_name_length = 64;
-my $max_group_name_length = 20;
+my $max_group_name_length = 18;

 PVE::JSONSchema::register_format('IPorCIDR', \&pve_verify_ip_or_cidr);
 sub pve_verify_ip_or_cidr {