]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1fe6a5a) | patch
evaluate: reject: fix crash if we have transport protocol conflict from inet
authorAlvaro Neira <alvaroneay@gmail.com>
Mon, 20 Oct 2014 23:29:40 +0000 (01:29 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 21 Oct 2014 08:16:40 +0000 (10:16 +0200)
commit17b495957b29e699f59874d1ceca9535921b1a79
treeac63b21f702f85e5b4411cdf3ce3eaafbdbb2e20tree | snapshot
parent1fe6a5add50d9f81b1a25c9ecb7f7ef4f065ca8ccommit | diff
evaluate: reject: fix crash if we have transport protocol conflict from inet

Example:

nft add rule inet filter input meta l4proto udp reject with tcp reset

If we try to check if the transport protocol is tcp, we use the network context.
If we don't have this network context, we have a crash.

Signed-off-by: Alvaro Neira Ayuso <alvaroneay@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/evaluate.c diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables