diff options
| author | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org </C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org> | 2008-04-13 02:52:40 +0000 |
|---|---|---|
| committer | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org </C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org> | 2008-04-13 02:52:40 +0000 |
| commit | 3ce7643c221878785ed0390cdc65e69054887f08 (patch) | |
| tree | 045dee0b4cf8c44b6817102cc24fa1c27c2c4a77 /extensions | |
| parent | 00ad9470fa48e68ee0cfda2079c99dc55961e4e1 (diff) | |
| download | conntrack-tools-3ce7643c221878785ed0390cdc65e69054887f08.tar.gz conntrack-tools-3ce7643c221878785ed0390cdc65e69054887f08.zip | |
relax parameter checking for UDP and TCP
Diffstat (limited to 'extensions')
| -rw-r--r-- | extensions/libct_proto_tcp.c | 2 | ||||
| -rw-r--r-- | extensions/libct_proto_udp.c | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/extensions/libct_proto_tcp.c b/extensions/libct_proto_tcp.c index b17a931..dc48d09 100644 --- a/extensions/libct_proto_tcp.c +++ b/extensions/libct_proto_tcp.c @@ -200,7 +200,7 @@ static void final_check(unsigned int flags, unsigned int cmd, struct nf_conntrack *ct) { - if ((1 << cmd) & (CT_CREATE|CT_UPDATE|CT_DELETE|CT_GET) && + if ((1 << cmd) & (CT_CREATE|CT_GET) && !((flags & TCP_ORIG_SPORT && flags & TCP_ORIG_DPORT) || (flags & TCP_REPL_SPORT && flags & TCP_REPL_DPORT))) exit_error(PARAMETER_PROBLEM, "missing ports"); diff --git a/extensions/libct_proto_udp.c b/extensions/libct_proto_udp.c index cb52c58..d74def5 100644 --- a/extensions/libct_proto_udp.c +++ b/extensions/libct_proto_udp.c @@ -165,7 +165,7 @@ static void final_check(unsigned int flags, unsigned int cmd, struct nf_conntrack *ct) { - if ((1 << cmd) & (CT_CREATE|CT_UPDATE|CT_DELETE|CT_GET) && + if ((1 << cmd) & (CT_CREATE|CT_GET) && !((flags & UDP_ORIG_SPORT && flags & UDP_ORIG_DPORT) || (flags & UDP_REPL_SPORT && flags & UDP_REPL_DPORT))) exit_error(PARAMETER_PROBLEM, "missing ports"); |