libip6t_dst: restore setting IP6T_OPTS_LEN flag

Bug origin is in commit v1.4.11~26^2~18.

Signed-off-by: Jan Engelhardt <jengelh@medozas.de>

diff --git a/extensions/libip6t_dst.c b/extensions/libip6t_dst.c
index 4125bd3de0a3f7d57b0a8429740633ea04a774a4..3fd4c019d4af73bae083d0f31c2f29f63d332b9e 100644 (file)
--- a/extensions/libip6t_dst.c
+++ b/extensions/libip6t_dst.c
@@ -111,6 +111,9 @@ static void dst_parse(struct xt_option_call *cb)
 
        xtables_option_parse(cb);
        switch (cb->entry->id) {
+       case O_DSTLEN:
+               optinfo->flags |= IP6T_OPTS_LEN;
+               break;
        case O_DSTOPTS:
                optinfo->optsnr = parse_options(cb->arg, optinfo->opts);
                optinfo->flags |= IP6T_OPTS_OPTS;

diff --git a/tests/options-most.rules b/tests/options-most.rules
index 120909117812b45b116f45f0600a955bdfebe48f..cd6aab80fb13699d5b6a10a983db1ddeb5169c97 100644 (file)
--- a/tests/options-most.rules
+++ b/tests/options-most.rules
@@ -79,6 +79,8 @@
 -A matches
 -A matches -m conntrack ! --ctstate NEW ! --ctproto tcp ! --ctorigsrc ::1/127 ! --ctorigdst ::2/127 ! --ctreplsrc ::2/127 ! --ctrepldst ::2/127 ! --ctorigsrcport 3 ! --ctorigdstport 4 ! --ctreplsrcport 5 ! --ctrepldstport 6 ! --ctstatus ASSURED ! --ctexpire 8:9
 -A matches
+-A matches -m dst ! --dst-len 12
+-A matches
 -A matches -p esp -m esp --espspi 1
 -A matches
 -A matches -p esp -m esp --espspi :2