diff options
| author | Brian Haley <bhaley@redhat.com> | 2019-03-19 15:56:55 -0400 |
|---|---|---|
| committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2019-03-20 08:22:28 +0100 |
| commit | 8ae8c537cd7fd0f2fe18e30046d73c59d3a7fe85 (patch) | |
| tree | f3de39f3d243b363ce2e22b23090512c8531f4d8 /src | |
| parent | ce06fb6069065c3d68475356c0728a5fa0a4ab74 (diff) | |
conntrack: Allow protocol number zero
/etc/protocols defines protocol zero as 'ip' for IPv4, and
'hopopt' for IPv6, which can be used with conntrack as '-p ip'
or '-p hopopt'. However it's equivalent, '-p 0' is considered
unsupported. Change the range check in findproto() to allow
zero as well.
Signed-off-by: Brian Haley <bhaley@redhat.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src')
| -rw-r--r-- | src/conntrack.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/conntrack.c b/src/conntrack.c index daa93db..97132a9 100644 --- a/src/conntrack.c +++ b/src/conntrack.c @@ -628,7 +628,7 @@ static struct ctproto_handler *findproto(char *name, int *pnum) } /* using a protocol number? */ protonum = atoi(name); - if (protonum > 0 && protonum <= IPPROTO_MAX) { + if (protonum >= 0 && protonum <= IPPROTO_MAX) { /* try lookup by number, perhaps this protocol is supported */ list_for_each_entry(cur, &proto_list, head) { if (cur->protonum == protonum) { |