diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2016-08-15 13:14:18 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2016-08-18 03:14:08 +0200 |
commit | 788c986343bc24bd0272e8aa409121ffe51f1ef3 (patch) | |
tree | 42cf0210e9fce93e0a5a951f0012e891fa750b05 /src/ct.c | |
parent | ddb1f1f8cdca2e0f70254a5adcc0291907503a36 (diff) |
src: quote user-defined strings when used from rule selectors
The following selectors display strings using quotes:
* meta iifname
* meta oifname
* meta ibriport
* meta obriport
However, the following do not:
* meta oif
* meta iif
* meta skuid
* meta skgid
* meta iifgroup
* meta oifgroup
* meta rtclassid
* ct label
Given they refer to user-defined values, neither keywords nor internal
built-in known values, let's quote the output of this.
This patch modifies symbolic_constant_print() so we can signal this to
indicate if the string needs to be quoted.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/ct.c')
-rw-r--r-- | src/ct.c | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -108,7 +108,7 @@ static void ct_label_type_print(const struct expr *expr) for (s = ct_label_tbl->symbols; s->identifier != NULL; s++) { if (bit != s->value) continue; - printf("%s", s->identifier); + printf("\"%s\"", s->identifier); return; } /* can happen when connlabel.conf is altered after rules were added */ |