conntrackd: fix expectation filtering if ExpectationSync On is used

If ExpectationSync On is used, we synchronize no expectations at all due to a problem in the event filtering. This is bug, this patch fixes the problem. Reported-by: Gaurav Sinha <gaurav.sinha@vyatta.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2012-01-22 18:27:43 +0100
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2012-01-22 18:27:43 +0100
commit: 4cd4e306286b4b255b7a5fb310a5250bb9d099e0 (patch)
tree: a361bc798934eee277acd13b5986e4ef9111c958
parent: 414fedd879fdc3cd0a910acd2fd9262251a6bfe7 (diff)
download: conntrack-tools-4cd4e306286b4b255b7a5fb310a5250bb9d099e0.tar.gz
conntrack-tools-4cd4e306286b4b255b7a5fb310a5250bb9d099e0.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/src/filter.c b/src/filter.c
index e8515d6..afefbfa 100644
--- a/src/filter.c
+++ b/src/filter.c
@@ -467,8 +467,9 @@ int exp_filter_find(struct exp_filter *f, const struct nf_expect *exp)
 {
 	struct exp_filter_item *item;
 
+	/* if filtering is not active, accept everything. */
 	if (f == NULL)
-		return 0;
+		return 1;
 
 	list_for_each_entry(item, &f->list, head) {
 		const char *name = nfexp_get_attr(exp, ATTR_EXP_HELPER_NAME);
author	Pablo Neira Ayuso <pablo@netfilter.org>	2012-01-22 18:27:43 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2012-01-22 18:27:43 +0100
commit	4cd4e306286b4b255b7a5fb310a5250bb9d099e0 (patch)
tree	a361bc798934eee277acd13b5986e4ef9111c958
parent	414fedd879fdc3cd0a910acd2fd9262251a6bfe7 (diff)
download	conntrack-tools-4cd4e306286b4b255b7a5fb310a5250bb9d099e0.tar.gz conntrack-tools-4cd4e306286b4b255b7a5fb310a5250bb9d099e0.zip