Skip to content

K
Kernel

openeuler / Kernel
接近 2 年 前同步成功

通知 8
Star 0
Fork 0
K
Kernel
提交 6556874d 编写于 作者: J Jan Engelhardt 提交者: David S. Miller
浏览文件
操作

[NETFILTER]: xt_conntrack: fix IPv4 address comparison 

Signed-off-by: NJan Engelhardt <jengelh@computergmbh.de>
Signed-off-by: NPatrick McHardy <kaber@trash.net>
Signed-off-by: NDavid S. Miller <davem@davemloft.net>
上级 d61f89e9
隐藏空白更改
内联 并排
Showing with 1 addition and 1 deletion
net/netfilter/xt_conntrack.c
浏览文件 @ 6556874d
...@@ -122,7 +122,7 @@ conntrack_addrcmp(const union nf_inet_addr *kaddr, ...@@ -122,7 +122,7 @@ conntrack_addrcmp(const union nf_inet_addr *kaddr,
const union nf_inet_addr *umask, unsigned int l3proto) const union nf_inet_addr *umask, unsigned int l3proto)
{ {
if (l3proto == AF_INET) if (l3proto == AF_INET)
return (kaddr->ip & umask->ip) == uaddr->ip; return ((kaddr->ip ^ uaddr->ip) & umask->ip) == 0;
else if (l3proto == AF_INET6) else if (l3proto == AF_INET6)
return ipv6_masked_addr_cmp(&kaddr->in6, &umask->in6, return ipv6_masked_addr_cmp(&kaddr->in6, &umask->in6,
&uaddr->in6) == 0; &uaddr->in6) == 0;
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册