libxt_state: fix regression about inversion of main option

author Jan Engelhardt <jengelh@medozas.de>

Wed, 22 Jun 2011 09:15:34 +0000 (11:15 +0200)

committer Jan Engelhardt <jengelh@medozas.de>

Wed, 22 Jun 2011 09:15:39 +0000 (11:15 +0200)
author Jan Engelhardt <jengelh@medozas.de>
Wed, 22 Jun 2011 09:15:34 +0000 (11:15 +0200)
committer Jan Engelhardt <jengelh@medozas.de>
Wed, 22 Jun 2011 09:15:39 +0000 (11:15 +0200)
diff --git a/extensions/libxt_state.c b/extensions/libxt_state.c

index 3fc747d871a02ec286361a1eb14ae38e6c8aa22c..eff444c8c024f1bab3b7c95a2a601dc8584cc6c4 100644 (file)
--- a/extensions/libxt_state.c
+++ b/extensions/libxt_state.c
@@ -23,7 +23,7 @@ state_help(void)
  
  static const struct xt_option_entry state_opts[] = {
         {.name = "state", .id = O_STATE, .type = XTTYPE_STRING,
-        .flags = XTOPT_MAND},
+        .flags = XTOPT_MAND | XTOPT_INVERT},
         XTOPT_TABLEEND,
  };
  
diff --git a/tests/options-most.rules b/tests/options-most.rules

index 125b5bf3413f671e7ce57198792dd91c9c3d07be..2b419e574a047b01c18d72444da8d984baad11a8 100644 (file)
--- a/tests/options-most.rules
+++ b/tests/options-most.rules
@@ -75,6 +75,8 @@
  -A matches
  -A matches -m conntrack --ctexpire 5:4294967295
  -A matches
+-A matches -m conntrack ! --ctstate NEW ! --ctproto tcp ! --ctorigsrc ::1/127 ! --ctorigdst ::2/127 ! --ctreplsrc ::2/127 ! --ctrepldst ::2/127 ! --ctorigsrcport 3 ! --ctorigdstport 4 ! --ctreplsrcport 5 ! --ctrepldstport 6 ! --ctstatus ASSURED ! --ctexpire 8:9
+-A matches
  -A matches -p esp -m esp --espspi 1
  -A matches
  -A matches -p esp -m esp --espspi :2
author	Jan Engelhardt <jengelh@medozas.de>
	Wed, 22 Jun 2011 09:15:34 +0000 (11:15 +0200)
committer	Jan Engelhardt <jengelh@medozas.de>
	Wed, 22 Jun 2011 09:15:39 +0000 (11:15 +0200)
extensions/libxt_state.c		patch \| blob \| blame \| history
tests/options-most.rules		patch \| blob \| blame \| history