diff options
author | Florian Westphal <fw@strlen.de> | 2018-04-18 14:07:09 +0200 |
---|---|---|
committer | Florian Westphal <fw@strlen.de> | 2018-04-18 23:25:10 +0200 |
commit | edf64f6c65e1ebd31713ece236df3de8f7ace444 (patch) | |
tree | 1b208530cc47cc461bda5b2d8611298795110504 /libnftables.pc.in | |
parent | 3baa28f24b3d70a7ee17d584c113a2c4e057a565 (diff) |
evaluate: reset eval context when evaluating set definitions
David reported nft chokes on this:
nft -f /tmp/A
/tmp/A:9:22-45: Error: datatype mismatch, expected concatenation of (IPv4 address, internet network service, IPv4 address), expression has type concatenation of (IPv4 address, internet network service)
cat /tmp/A
flush ruleset;
table ip filter {
set setA {
type ipv4_addr . inet_service . ipv4_addr
flags timeout
}
set setB {
type ipv4_addr . inet_service
flags timeout
}
}
Problem is we leak set definition details of setA to setB via eval
context, so reset this.
Also add test case for this.
Reported-by: David Fabian <david.fabian@bosson.cz>
Signed-off-by: Florian Westphal <fw@strlen.de>
Diffstat (limited to 'libnftables.pc.in')
0 files changed, 0 insertions, 0 deletions