[Bug 294858] pfctl -o none fails to skip optimization

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 294858] pfctl -o none fails to skip optimization"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sat, 09 May 2026 13:31:01 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=294858

--- Comment #3 from commit-hook@FreeBSD.org ---
A commit in branch stable/14 references this bug:

URL:
https://cgit.FreeBSD.org/src/commit/?id=0cd655f71b46ada2c353c371e2a2f9f0dac29613

commit 0cd655f71b46ada2c353c371e2a2f9f0dac29613
Author:     Kristof Provost <kp@FreeBSD.org>
AuthorDate: 2026-04-29 15:04:44 +0000
Commit:     Kristof Provost <kp@FreeBSD.org>
CommitDate: 2026-05-09 13:29:04 +0000

    pf: do not reject rules with colliding hashes

    We insert rules in pf_krule_global solely for the benefit of the
    'keepcounters' feature. Failing to insert (beause the rule hash
    collides, or an identical rule already exists) would be worse than
    restoring counts to the wrong rule (or failing to restore them at all).

    PR:             282863, 294860, 294859, 294858
    MFC after:      3 days
    Sponsored by:   Rubicon Communications, LLC ("Netgate")
    Differential Revision:  https://reviews.freebsd.org/D56745

    (cherry picked from commit a0e4c65f1814a7a677364dc29bb703f84323d175)

 sys/netpfil/pf/pf_ioctl.c     | 24 ++++++++----------------
 tests/sys/netpfil/pf/match.sh | 36 ++++++++++++++++++++++++++++++++++++
 2 files changed, 44 insertions(+), 16 deletions(-)

-- 
You are receiving this mail because:
You are the assignee for the bug.