summaryrefslogtreecommitdiffstats
path: root/kernel
diff options
context:
space:
mode:
authorBart De Schuymer <bdschuym@pandora.be>2002-06-23 18:54:34 +0000
committerBart De Schuymer <bdschuym@pandora.be>2002-06-23 18:54:34 +0000
commitaba3cd75962eef91dd42d8cad0e2aaea160c3a65 (patch)
treede2c5c0635e9fbf63b444e47b1dff3ddc11028db /kernel
parent84c62162d31fb487711a0ab0fd8a8199eba96a30 (diff)
*** empty log message ***
Diffstat (limited to 'kernel')
-rw-r--r--kernel/linux/net/bridge/netfilter/ebt_dnat.c4
-rw-r--r--kernel/linux/net/bridge/netfilter/ebt_redirect.c2
-rw-r--r--kernel/linux/net/bridge/netfilter/ebt_snat.c2
3 files changed, 4 insertions, 4 deletions
diff --git a/kernel/linux/net/bridge/netfilter/ebt_dnat.c b/kernel/linux/net/bridge/netfilter/ebt_dnat.c
index cfa2519..ee8b2bc 100644
--- a/kernel/linux/net/bridge/netfilter/ebt_dnat.c
+++ b/kernel/linux/net/bridge/netfilter/ebt_dnat.c
@@ -32,12 +32,12 @@ static int ebt_target_dnat_check(const char *tablename, unsigned int hookmask,
struct ebt_nat_info *infostuff = (struct ebt_nat_info *) data;
if ( (strcmp(tablename, "nat") ||
- (hookmask & ~(1 << NF_BR_PRE_ROUTING) | (1 << NF_BR_LOCAL_OUT))) &&
+ (hookmask & ~((1 << NF_BR_PRE_ROUTING) | (1 << NF_BR_LOCAL_OUT)))) &&
(strcmp(tablename, "broute") || hookmask & ~(1 << NF_BR_BROUTING)) )
return -EINVAL;
if (datalen != sizeof(struct ebt_nat_info))
return -EINVAL;
- if (infostuff->target >= NUM_STANDARD_TARGETS)
+ if (infostuff->target < -NUM_STANDARD_TARGETS || infostuff->target >= 0)
return -EINVAL;
return 0;
}
diff --git a/kernel/linux/net/bridge/netfilter/ebt_redirect.c b/kernel/linux/net/bridge/netfilter/ebt_redirect.c
index 35b838e..503f59f 100644
--- a/kernel/linux/net/bridge/netfilter/ebt_redirect.c
+++ b/kernel/linux/net/bridge/netfilter/ebt_redirect.c
@@ -38,7 +38,7 @@ static int ebt_target_redirect_check(const char *tablename, unsigned int hookmas
return -EINVAL;
if (datalen != sizeof(struct ebt_redirect_info))
return -EINVAL;
- if (infostuff->target >= NUM_STANDARD_TARGETS)
+ if (infostuff->target < -NUM_STANDARD_TARGETS || infostuff->target >= 0)
return -EINVAL;
return 0;
}
diff --git a/kernel/linux/net/bridge/netfilter/ebt_snat.c b/kernel/linux/net/bridge/netfilter/ebt_snat.c
index 9e90114..0fad12a 100644
--- a/kernel/linux/net/bridge/netfilter/ebt_snat.c
+++ b/kernel/linux/net/bridge/netfilter/ebt_snat.c
@@ -37,7 +37,7 @@ static int ebt_target_snat_check(const char *tablename, unsigned int hookmask,
return -EINVAL;
if (hookmask & ~(1 << NF_BR_POST_ROUTING))
return -EINVAL;
- if (infostuff->target >= NUM_STANDARD_TARGETS)
+ if (infostuff->target < -NUM_STANDARD_TARGETS || infostuff->target >= 0)
return -EINVAL;
return 0;
}