]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8cdc78e) | patch
evaluate: fix rule replacement with anon sets
authorFlorian Westphal <fw@strlen.de>
Sun, 19 Nov 2023 12:05:55 +0000 (13:05 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 21 Nov 2023 14:55:56 +0000 (15:55 +0100)
commitf7e50d965735636ab932e5280a3d562629a6a58b
tree8198c566f6751eae22952d37c7549b45bca93317tree | snapshot
parent8cdc78eba7792fc6b228d89198b38730a077259acommit | diff
evaluate: fix rule replacement with anon sets

commit 256904b1ded6314974dddc75726149f7b19d33f4 upstream.

nft replace rule t c handle 3 'jhash ip protocol . ip saddr mod 170 vmap { 0-94 : goto wan1, 95-169 : goto wan2, 170-269 }"'
BUG: unhandled op 2
nft: src/evaluate.c:1748: interval_set_eval: Assertion `0' failed.

Fixes: 81e36530fcac ("src: replace interval segment tree overlap and automerge")
Reported-by: Tino Reichardt <milky-netfilter@mcmilk.de>
Signed-off-by: Florian Westphal <fw@strlen.de>
src/evaluate.c diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables