CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2019/03/06 12:49:05
Modified files:
sbin/pfctl : parse.y pfctl.c pfctl_parser.h
Log message:
Fix once rules
parse.y revision 1.682 from 16.07.2018 errornously allowed `match once' and
`anchor "a" once'.
Fix both by checking for PF_DROP not PF_MATCH and creating anchors in the
parser already such that they can be used to distinguish anchor rules in
the same check as well.
Found and fixed by Petr Hoffmann <petr.hoffmann at oracle dot com>, thanks!
While here, remove an unneeded cast and make pfctl_add_rule() void as it
always returned 0.
OK sashan
