netfilter: correct error in construction of NAT tuple

author Rich Fought <rmf.aero@gmail.com>

Tue, 29 Jan 2013 23:10:01 +0000 (15:10 -0800)

committer Rich Fought <rmf.aero@gmail.com>

Tue, 29 Jan 2013 23:10:01 +0000 (15:10 -0800)
author Rich Fought <rmf.aero@gmail.com>
Tue, 29 Jan 2013 23:10:01 +0000 (15:10 -0800)
committer Rich Fought <rmf.aero@gmail.com>
Tue, 29 Jan 2013 23:10:01 +0000 (15:10 -0800)
diff --git a/lib/netfilter/exp.c b/lib/netfilter/exp.c

index a348f99ae56b6e128529a0b06e20d3e365e6edc0..86ed8d184632444c81497483bf5a7e73efa67e75 100644 (file)
--- a/lib/netfilter/exp.c
+++ b/lib/netfilter/exp.c
@@ -351,7 +351,11 @@ static int nfnl_exp_build_tuple(struct nl_msg *msg, const struct nfnl_exp *exp,
  
         int type = exp_get_tuple_attr(cta);
  
-       tuple = nla_nest_start(msg, cta);
+    if (cta == CTA_EXPECT_NAT)
+        tuple = nla_nest_start(msg, CTA_EXPECT_NAT_TUPLE);
+    else
+        tuple = nla_nest_start(msg, cta);
+
         if (!tuple)
                 goto nla_put_failure;
  
@@ -420,7 +424,7 @@ static int nfnl_exp_build_nat(struct nl_msg *msg, const struct nfnl_exp *exp)
                                 nfnl_exp_get_nat_dir(exp));
         }
  
-       if ((err = nfnl_exp_build_tuple(msg, exp, CTA_EXPECT_NAT_TUPLE)) < 0)
+       if ((err = nfnl_exp_build_tuple(msg, exp, CTA_EXPECT_NAT)) < 0)
                 goto nla_put_failure;
  
         nla_nest_end(msg, nat);
author	Rich Fought <rmf.aero@gmail.com>
	Tue, 29 Jan 2013 23:10:01 +0000 (15:10 -0800)
committer	Rich Fought <rmf.aero@gmail.com>
	Tue, 29 Jan 2013 23:10:01 +0000 (15:10 -0800)