Fix pf_anchor_stackframe commit to revert pf rule matching to the

author yasuoka <yasuoka@openbsd.org>

Sun, 22 Jan 2023 23:05:51 +0000 (23:05 +0000)

committer yasuoka <yasuoka@openbsd.org>

Sun, 22 Jan 2023 23:05:51 +0000 (23:05 +0000)
author yasuoka <yasuoka@openbsd.org>
Sun, 22 Jan 2023 23:05:51 +0000 (23:05 +0000)
committer yasuoka <yasuoka@openbsd.org>
Sun, 22 Jan 2023 23:05:51 +0000 (23:05 +0000)
diff --git a/sys/net/pf.c b/sys/net/pf.c

index b121cc0..8cb1326 100644 (file)
--- a/sys/net/pf.c
+++ b/sys/net/pf.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: pf.c,v 1.1170 2023/01/12 13:09:47 bluhm Exp $ */
+/*     $OpenBSD: pf.c,v 1.1171 2023/01/22 23:05:51 yasuoka Exp $ */
  
  /*
   * Copyright (c) 2001 Daniel Hartmeier
@@ -4210,6 +4210,10 @@ next_rule:
         }
  
         if (pf_anchor_stack_pop(&ruleset, &r, &child, &target) == 0) {
+               /* stop if any rule matched within quick anchors. */
+               if (r->quick == PF_TEST_QUICK && *ctx->am == r)
+                       return (PF_TEST_QUICK);
+
                 switch (target) {
                 case PF_NEXT_CHILD:
                         goto next_child;
author	yasuoka <yasuoka@openbsd.org>
	Sun, 22 Jan 2023 23:05:51 +0000 (23:05 +0000)
committer	yasuoka <yasuoka@openbsd.org>
	Sun, 22 Jan 2023 23:05:51 +0000 (23:05 +0000)