CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

projects / FreeBSD / FreeBSD.git / commit

author	Franco Fichtner <franco@opnsense.org>
	Sat, 6 Aug 2022 08:59:56 +0000 (10:59 +0200)
committer	Kristof Provost <kp@FreeBSD.org>
	Sat, 6 Aug 2022 12:22:42 +0000 (14:22 +0200)
commit	1e73fbd8b28946cb1341b51292082864943f0a89
tree	ecbb78acb775d83da377e9b1ae14af2db9531d34	tree \| snapshot
parent	93dd3adac7d84528c4ba4b0c3992931a38dbbc24	commit \| diff

pfctl: fix FOM_ICMP/POM_STICKYADDRESS clash

pass inet proto icmp icmp-type {unreach}
pass route-to (if0 127.0.0.1/8) sticky-address inet

The wrong struct was being tested. The parser tries to prevent
"sticky-address sticky-address" syntax but was actually cross-rule
enforcing that ICMP filter cannot be before the use of "sticky-address"
in next rule.

MFC after: 2 weeks
Reviewed by: kp
Differential Revision: https://reviews.freebsd.org/D36050

sbin/pfctl/parse.y

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom