]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e2a5f72) | patch
rule: remove redundant meta protocol from the evaluation step
authorPablo Neira Ayuso <pablo@netfilter.org>
Mon, 30 Aug 2021 19:37:50 +0000 (21:37 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Fri, 3 Sep 2021 16:33:14 +0000 (18:33 +0200)
commit646c5d02a5db3e8c3677cdf8426a646dd118fd49
tree948113da51ae285d7998a430f4c13b8d487da213tree
parente2a5f72549cc5c45f16883fc82a799b0f09d66d9commit | diff
rule: remove redundant meta protocol from the evaluation step

567ea4774e13 ("netlink_delinearize: incorrect meta protocol dependency kill")
does not document two cases that are handled in this patch:

- 'meta protocol ip' is removed if used in the ip family.
- 'meta protocol ip6' is removed if used in the ip6 family.

This patch removes this redundancy earlier, from the evaluation step
before netlink bytecode generation.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/rule.c diff | blob | blame | history
tests/py/ip/meta.t diff | blob | blame | history
tests/py/ip/meta.t.payload diff | blob | blame | history
tests/py/ip6/meta.t diff | blob | blame | history
tests/py/ip6/meta.t.payload diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables