ipset v7 bitmap:port add failed: invalid protocol

[ws-weisb]

&IpSetCreateOption{
    Replace: true,
    PortFrom: 1,
    PortTo: 65535
}
p := 55
&IPSetEntry{Port: &p}

if remove protocol attr, is ok.
bitmap:port seems to be unrelated to the protocol. In higher versions, additional specified protocols will result in an error.
https://github.com/vishvananda/netlink/blob/main/ipset_linux.go#L318-L323

os env

[aboch]

I do not think that attribute has anything to do with IP Protocol.

https://elixir.bootlin.com/linux/v6.12.6/source/include/uapi/linux/netfilter/ipset/ip_set.h#L13

I think that refers to the version of ipset. The netlink code you referenced happens to work just because TCP is 6... We should change that, it's confusing.

[ws-weisb]

Sorry... No new emails to notify me

I do not think that attribute has anything to do with IP Protocol.

https://elixir.bootlin.com/linux/v6.12.6/source/include/uapi/linux/netfilter/ipset/ip_set.h#L13

I think that refers to the version of ipset. The netlink code you referenced happens to work just because TCP is 6... We should change that, it's confusing.

I tried changing the version to 7 but it didn't work.
bitmap:port itself has nothing to do with the protocol.
I mean if there is an extra protocol attr, it will be considered an error.
This may be a strong check in the new version.
I compared the strace of the ipset command directly add and found two differences.

1. protocol version 7 (top attr, not attr data)
2. No protocol attr in the IPSetEntry(IPSET_ATTR_PROTO).
   Modification 1 did not solve the problem, modification 2 removed the extra protocol attr and worked well.
   @aboch

At the same time, the kernel is compared with the mini protocol, so this is no problem with protocol 6