extensions/libxt_tcp: fix nftables translate flags value, 'none' vs '0x0'

The iptables command:
 -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG NONE

should translate to:
 tcp flags & fin|syn|rst|psh|ack|urg == 0x0

instead of:
 tcp flags & fin|syn|rst|psh|ack|urg == none

Reported-by: Vadim A. Misbakh-Soloviov <netfilter@mva.name>
Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Tested-by: Vadim A. Misbakh-Soloviov <netfilter@mva.name>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

diff --git a/extensions/libxt_tcp.c b/extensions/libxt_tcp.c
index 6a85ed468f3d42b9f4697c9a89f333fd6012e90f..2a14035de6d6dbc286d69bf505d605c9e3b3f4b9 100644 (file)
--- a/extensions/libxt_tcp.c
+++ b/extensions/libxt_tcp.c
@@ -390,7 +390,7 @@ static void print_tcp_xlate(struct xt_xlate *xl, uint8_t flags)
        }
 
        if (!have_flag)
-               xt_xlate_add(xl, "none");
+               xt_xlate_add(xl, "0x0");
 }
 
 static int tcp_xlate(const void *ip, const struct xt_entry_match *match,