From a3a665cb17632cd09172590ba6f6f45cfe980956 Mon Sep 17 00:00:00 2001 From: laforge Date: Tue, 6 Aug 2002 18:46:18 +0000 Subject: do not show potentially dangerous parameteres of ECN target (Alexey) --- extensions/libipt_ECN.c | 13 ++++++++----- extensions/libipt_MARK.c | 4 ++-- 2 files changed, 10 insertions(+), 7 deletions(-) (limited to 'extensions') diff --git a/extensions/libipt_ECN.c b/extensions/libipt_ECN.c index 99b0f0e..4b33254 100644 --- a/extensions/libipt_ECN.c +++ b/extensions/libipt_ECN.c @@ -6,7 +6,7 @@ * * libipt_ECN.c borrowed heavily from libipt_DSCP.c * - * $Id: libipt_ECN.c,v 1.8 2002/08/05 19:36:15 laforge Exp $ + * $Id: libipt_ECN.c,v 1.9 2002/08/06 06:50:04 laforge Exp $ */ #include #include @@ -25,14 +25,17 @@ static void help(void) { printf( "ECN target v%s options\n" -" --ecn-tcp-remove Remove all ECN bits from TCP header\n" +" --ecn-tcp-remove Remove all ECN bits from TCP header\n", + IPTABLES_VERSION, IPTABLES_VERSION); +} + +#if 0 "ECN target v%s EXPERIMENTAL options (use with extreme care!)\n" " --ecn-ip-ect Set the IPv4 ECT codepoint (0 to 3)\n" " --ecn-tcp-cwr Set the IPv4 CWR bit (0 or 1)\n" " --ecn-tcp-ece Set the IPv4 ECE bit (0 or 1)\n", - IPTABLES_VERSION, IPTABLES_VERSION -); -} +#endif + static struct option opts[] = { { "ecn-tcp-remove", 0, 0, 'F' }, diff --git a/extensions/libipt_MARK.c b/extensions/libipt_MARK.c index 9774d45..0863041 100644 --- a/extensions/libipt_MARK.c +++ b/extensions/libipt_MARK.c @@ -46,9 +46,9 @@ parse(int c, char **argv, int invert, unsigned int *flags, = (struct ipt_mark_target_info *)(*target)->data; switch (c) { - char *end; case '1': - if (string_to_number(optarg, 0, 0xfffff, &markinfo->mark)) + if (string_to_number(optarg, 0, 0xffffffff, + (unsigned int *)&markinfo->mark)) exit_error(PARAMETER_PROBLEM, "Bad MARK value `%s'", optarg); if (*flags) exit_error(PARAMETER_PROBLEM, -- cgit v1.2.3