]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c3e77ab) | patch
pfctl: Another set skip <group> fix
authorKristof Provost <kp@FreeBSD.org>
Mon, 11 Jan 2021 13:09:08 +0000 (14:09 +0100)
committerKristof Provost <kp@FreeBSD.org>
Mon, 11 Jan 2021 21:30:44 +0000 (22:30 +0100)
commit0c156a3c32cd0d9168570da5686ddc96abcbbc5a
treefea0679ed6335472fa43acfd7f7e0ee68975853dtree | snapshot
parentc3e77ab43f2967ea4286a887668ef9f44be0fcc1commit | diff
pfctl: Another set skip <group> fix

When retrieving the list of group members we cannot simply use
ifa_lookup(), because it expects the interface to have an IP (v4 or v6)
address. This means that interfaces with no address are not found.
This presents as interfacing being alternately marked as skip and not
whenever the rules are re-loaded.

Happily we only need to fix ifa_grouplookup(). Teach it to also accept
AF_LINK (i.e. interface) node_hosts.

PR:      250994
MFC after: 3 days
sbin/pfctl/pfctl_parser.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.