Diffusion FreeBSD src repository 35237559a6a0

pfctl: delay label macro expansion until after rule optimisation
35237559a6a0
Actions

Description

pfctl: delay label macro expansion until after rule optimisation

We used to expand the $nr macro in labels into the rule number prior to
the optimisation step. This would occasionally produce incorrect rule
numbers in the labels.

Delay all macro expansion until after the optimisation step to ensure
that we expand the correct values.

MFC after: 1 week
Reported by: Özkan KIRIK <ozkan.kirik@gmail.com>
Differential Revision: https://reviews.freebsd.org/D32488

(cherry picked from commit 09c7f2386973f8c36978895a7600320916bc3d07)

Details

Provenance

kp	Authored on Oct 13 2021, 2:06 PM

Differential Revision

D32488: pfctl: delay label macro expansion until after rule optimisation

Parents

rG56dc7a08bff8: pf: do not copy anchor_wildcard / anchor_relative from userspace

Branches

Unknown

Tags

Unknown

Event Timeline

kp committed rG35237559a6a0: pfctl: delay label macro expansion until after rule optimisation (authored by kp).Oct 22 2021, 7:34 AM

kp added an edge: D32488: pfctl: delay label macro expansion until after rule optimisation.Oct 22 2021, 12:34 PM

Changes (3)

Path

Size

sbin/

pfctl/

parse.y

pfctl.c

pfctl.h

rG35237559a6a0

View Options

sbin/pfctl/parse.y

View Options

sbin/pfctl/pfctl.c

View Options

pfctl: delay label macro expansion until after rule optimisation35237559a6a0Actions

Description

Details

Event Timeline

Changes (3)

rG35237559a6a0

sbin/pfctl/parse.y

sbin/pfctl/pfctl.c

sbin/pfctl/pfctl.h

pfctl: delay label macro expansion until after rule optimisation
35237559a6a0
Actions