/spare/repo/netdev-2.6 branch 'ieee80211'

author: Jeff Garzik <jgarzik@pobox.com> 2005-09-01 18:02:27 -0400
committer: Jeff Garzik <jgarzik@pobox.com> 2005-09-01 18:02:27 -0400
commit: ceeec3dc375e3b0618f16b34efc56fe093918f8b (patch)
tree: 2293d02721ee05131aaf1c60e4fba7e281585eec /net/ipv4/netfilter/ipt_connmark.c
parent: fbff868db3a4cc6a89d51da9a6d49b26c29d04fb (diff)
parent: e3ee3b78f83688a0ae4315e8be71b2eac559904a (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/net/ipv4/netfilter/ipt_connmark.c b/net/ipv4/netfilter/ipt_connmark.c
index 2706f96cea5..bf8de47ce00 100644
--- a/net/ipv4/netfilter/ipt_connmark.c
+++ b/net/ipv4/netfilter/ipt_connmark.c
@@ -54,9 +54,16 @@ checkentry(const char *tablename,
 	   unsigned int matchsize,
 	   unsigned int hook_mask)
 {
+	struct ipt_connmark_info *cm = 
+				(struct ipt_connmark_info *)matchinfo;
 	if (matchsize != IPT_ALIGN(sizeof(struct ipt_connmark_info)))
 		return 0;
 
+	if (cm->mark > 0xffffffff || cm->mask > 0xffffffff) {
+		printk(KERN_WARNING "connmark: only support 32bit mark\n");
+		return 0;
+	}
+
 	return 1;
 }
author	Jeff Garzik <jgarzik@pobox.com>	2005-09-01 18:02:27 -0400
committer	Jeff Garzik <jgarzik@pobox.com>	2005-09-01 18:02:27 -0400
commit	ceeec3dc375e3b0618f16b34efc56fe093918f8b (patch)
tree	2293d02721ee05131aaf1c60e4fba7e281585eec /net/ipv4/netfilter/ipt_connmark.c
parent	fbff868db3a4cc6a89d51da9a6d49b26c29d04fb (diff)
parent	e3ee3b78f83688a0ae4315e8be71b2eac559904a (diff)