netfilter: nft_nat: fix family validation - starfive-tech/linux.git - StarFive Tech Linux Kernel for VisionFive (JH7110) boards (mirror)

diff options

author	Patrick McHardy <kaber@trash.net>	2014-03-07 22:08:33 +0400
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2014-03-08 15:35:19 +0400
commit	a4c2e8beba843206cf6447a85b0580a1ae5d50a0 (patch)
tree	7ef23e6e31875fb7af556c1b337c4e0bc0af7194 /net/netfilter/xt_connlimit.c
parent	d46f2cd2601d01d54fd556395483fb4032155c3b (diff)
download	linux-a4c2e8beba843206cf6447a85b0580a1ae5d50a0.tar.xz

netfilter: nft_nat: fix family validation

The family in the NAT expression is basically completely useless since we have it available during runtime anyway. Nevertheless it is used to decide the NAT family, so at least validate it properly. As we don't support cross-family NAT, it needs to match the family of the table the expression exists in. Unfortunately we can't remove it completely since we need to dump it for userspace (*sigh*), so at least reduce the memory waste. Additionally clean up the module init function by removing useless temporary variables. Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

Diffstat (limited to 'net/netfilter/xt_connlimit.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: