Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / kernel / common / ec8d540969da9a70790e9028d57b5b577dd7aa77
commitec8d540969da9a70790e9028d57b5b577dd7aa77[log] [tgz]
authorChristoph Paasch <christoph.paasch@gmail.com>Mon Mar 16 15:51:29 2009 +0100
committerPatrick McHardy <kaber@trash.net>Mon Mar 16 15:51:29 2009 +0100
tree375d23d65f3288776de1585cccae5270b90a56af
parent626ba8fbac9156a94a80be46ffd2f2ce9e4e89a0 [diff]
netfilter: conntrack: fix dropping packet after l4proto->packet()

We currently use the negative value in the conntrack code to encode
the packet verdict in the error. As NF_DROP is equal to 0, inverting
NF_DROP makes no sense and, as a result, no packets are ever dropped.

Signed-off-by: Christoph Paasch <christoph.paasch@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Patrick McHardy <kaber@trash.net>
2 files changed
tree: 375d23d65f3288776de1585cccae5270b90a56af
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. usr/
  20. virt/
  21. .gitignore
  22. .mailmap
  23. COPYING
  24. CREDITS
  25. Kbuild
  26. MAINTAINERS
  27. Makefile
  28. README
  29. REPORTING-BUGS