[NETFILTER] fix ctnetlink 'create_expect' parsing There was a stupid copy+paste mistake where we parse the MASK nfattr into the "tuple" variable instead of the "mask" variable. This patch fixes it. Thanks to Pablo Neira.
Signed-off-by: Harald Welte <[EMAIL PROTECTED]> --- commit 5d03469be285d9bc2b82861d87c667cf5614132d tree f5551e270c07504ca3f7e234504a3fa2ea6f6728 parent 1f7c0373f4ab32a46ffdee952238b2a596119cb0 author Harald Welte <[EMAIL PROTECTED]> Di, 02 Aug 2005 11:51:56 +0200 committer Harald Welte <[EMAIL PROTECTED]> Di, 02 Aug 2005 11:51:56 +0200 net/ipv4/netfilter/ip_conntrack_netlink.c | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diff --git a/net/ipv4/netfilter/ip_conntrack_netlink.c b/net/ipv4/netfilter/ip_conntrack_netlink.c --- a/net/ipv4/netfilter/ip_conntrack_netlink.c +++ b/net/ipv4/netfilter/ip_conntrack_netlink.c @@ -1388,7 +1388,7 @@ ctnetlink_create_expect(struct nfattr *c err = ctnetlink_parse_tuple(cda, &tuple, CTA_EXPECT_TUPLE); if (err < 0) return err; - err = ctnetlink_parse_tuple(cda, &tuple, CTA_EXPECT_MASK); + err = ctnetlink_parse_tuple(cda, &mask, CTA_EXPECT_MASK); if (err < 0) return err; -- - Harald Welte <[EMAIL PROTECTED]> http://netfilter.org/ ============================================================================ "Fragmentation is like classful addressing -- an interesting early architectural error that shows how much experimentation was going on while IP was being designed." -- Paul Vixie
pgp84OdGkhvhz.pgp
Description: PGP signature