]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 51a09ac) | patch
datatype: add DTYPE_F_CLONE flag
authorPablo Neira Ayuso <pablo@netfilter.org>
Sat, 25 Feb 2017 12:15:14 +0000 (13:15 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Sat, 25 Feb 2017 12:40:34 +0000 (13:40 +0100)
commit1db6c61f233a0488bc4c9b8fc47d205d4885ef50
tree5f200eb44710d1a4d0b7ff789a9e15e1bc3717a1tree
parent51a09ac313cccff1dd65f546d218e9a6fa2a668fcommit | diff
datatype: add DTYPE_F_CLONE flag

This flag allows us to identify datatypes that are instances from
original datatypes.

This fixes a possible double free when attaching a concatenation
datatype to set->keytype while being also referenced from concatenation
expressions.

ip6/flowtable.t: ERROR: line 5: src/nft add rule --debug=netlink ip6 test-ip6 input flow table acct_out { meta iif . ip6 saddr timeout 600s counter }: This rule should not have failed.
*** Error in `src/nft': double free or corruption (fasttop): 0x000000000117ce70 ***

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/datatype.h diff | blob | blame | history
src/datatype.c diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables