Previous patch "nft: split parsing from netlink commands" added a second struct iptables_command_state to rule_find functions but missed to add a related clear_cs() call also. Signed-off-by: Phil Sutter <phil@xxxxxx> --- iptables/nft-arp.c | 1 + iptables/nft-bridge.c | 1 + iptables/nft-shared.c | 1 + 3 files changed, 3 insertions(+) diff --git a/iptables/nft-arp.c b/iptables/nft-arp.c index 748784bc49048..e9a2d9de21560 100644 --- a/iptables/nft-arp.c +++ b/iptables/nft-arp.c @@ -656,6 +656,7 @@ static bool nft_arp_rule_find(struct nft_handle *h, struct nftnl_rule *r, ret = true; out: h->ops->clear_cs(&this); + h->ops->clear_cs(cs); return ret; } diff --git a/iptables/nft-bridge.c b/iptables/nft-bridge.c index 80d7f91710c16..39a2f704000c7 100644 --- a/iptables/nft-bridge.c +++ b/iptables/nft-bridge.c @@ -789,6 +789,7 @@ static bool nft_bridge_rule_find(struct nft_handle *h, struct nftnl_rule *r, ret = true; out: h->ops->clear_cs(&this); + h->ops->clear_cs(cs); return ret; } diff --git a/iptables/nft-shared.c b/iptables/nft-shared.c index 6b425f8525d3a..bfc7bc2203239 100644 --- a/iptables/nft-shared.c +++ b/iptables/nft-shared.c @@ -1024,6 +1024,7 @@ bool nft_ipv46_rule_find(struct nft_handle *h, struct nftnl_rule *r, ret = true; out: h->ops->clear_cs(&this); + h->ops->clear_cs(cs); return ret; } -- 2.25.1
