]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d6ee32c) | patch
netfilter: conntrack: fix dropping packet after l4proto->packet()
authorChristoph Paasch <christoph.paasch@gmail.com>
Mon, 16 Mar 2009 14:51:29 +0000 (15:51 +0100)
committerPatrick McHardy <kaber@trash.net>
Mon, 16 Mar 2009 14:51:29 +0000 (15:51 +0100)
commit0a763eb04d92c3cd485cde154860d10e3a24bf5a
tree375d23d65f3288776de1585cccae5270b90a56aftree | snapshot
parentd6ee32c7db8b9345979f36a7c3ce8ef23f204f28commit | diff
netfilter: conntrack: fix dropping packet after l4proto->packet()

We currently use the negative value in the conntrack code to encode
the packet verdict in the error. As NF_DROP is equal to 0, inverting
NF_DROP makes no sense and, as a result, no packets are ever dropped.

Signed-off-by: Christoph Paasch <christoph.paasch@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Patrick McHardy <kaber@trash.net>
net/netfilter/nf_conntrack_core.c diff | blob | history
net/netfilter/nf_conntrack_proto_tcp.c diff | blob | history
Linux Kernel Source Tree.