]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2ee93ca) | patch
optimize: clone counter before insertion into set element
authorPablo Neira Ayuso <pablo@netfilter.org>
Fri, 5 Jul 2024 12:03:33 +0000 (14:03 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Fri, 5 Jul 2024 14:11:37 +0000 (16:11 +0200)
commitac77f3805c71f14c51730a9c5cb726ee67f14159
tree37e2a4f12ea02d5aecd0721399c6ead7a46c31b6tree
parent2ee93ca27ddca1d8302402c6d3b6da3cd59595d8commit | diff
optimize: clone counter before insertion into set element

The counter statement that is zapped from the rule needs to be cloned
before inserting it into each set element.

Fixes: 686ab8b6996e ("optimize: do not remove counter in verdict maps")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/optimize.c diff | blob | blame | history
tests/shell/testcases/optimizations/dumps/merge_counter.nft [new file with mode: 0644] blob
tests/shell/testcases/optimizations/merge_counter [new file with mode: 0755] blob
Mirror of git://git.netfilter.org/nftables