diff options
author | Henning Brauer <henning@cvs.openbsd.org> | 2002-07-05 16:48:45 +0000 |
---|---|---|
committer | Henning Brauer <henning@cvs.openbsd.org> | 2002-07-05 16:48:45 +0000 |
commit | b727ac272da1caa9a9b9fef5ce6040ab584c545b (patch) | |
tree | 1ecb81c33c07a883d5bd2f3b580c03267625bf95 /sbin | |
parent | 2f84fc5857092d1fbf2e04525cf67ee61062cb49 (diff) |
another small bug I found while installing a -current pf firewall.
we don't support
pass/block in on ! <interface>
(at least, not yet)
let the parser complain instead of ignoring the '!'
ok pb@, dhartmei@
Diffstat (limited to 'sbin')
-rw-r--r-- | sbin/pfctl/parse.y | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/sbin/pfctl/parse.y b/sbin/pfctl/parse.y index 26c114be836..6be0d9e3de0 100644 --- a/sbin/pfctl/parse.y +++ b/sbin/pfctl/parse.y @@ -1,4 +1,4 @@ -/* $OpenBSD: parse.y,v 1.110 2002/07/01 10:07:40 espie Exp $ */ +/* $OpenBSD: parse.y,v 1.111 2002/07/05 16:48:44 henning Exp $ */ /* * Copyright (c) 2001 Markus Friedl. All rights reserved. @@ -349,6 +349,11 @@ pfrule : action dir log quick interface route af proto fromto r.log = $3; r.quick = $4; + if ($5->not) { + yyerror("'pass/block on ! $interface' isn't " + "supported."); + YYERROR; + } r.af = $7; r.flags = $12.b1; |