[NETFILTER] ctnetlink: return -EINVAL if size is wrong Return -EINVAL if the size isn't OK instead of -EPERM.
Signed-off-by: Pablo Neira Ayuso <[EMAIL PROTECTED]>
Signed-off-by: Harald Welte <[EMAIL PROTECTED]>
---
commit 6ec2ee65ba91c23a2d36d11a9d92a435b30e56db
tree c6331d67f7d253384bf13aa29d8386fc6da1558f
parent 1e31b01ffe57ef46acad5ffec421880a97b43e83
author Pablo Neira Ayuso <[EMAIL PROTECTED]> Tue, 08 Nov 2005 15:52:05 +0100
committer Harald Welte <[EMAIL PROTECTED]> Tue, 08 Nov 2005 15:52:05 +0100
net/ipv4/netfilter/ip_conntrack_netlink.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/net/ipv4/netfilter/ip_conntrack_netlink.c
b/net/ipv4/netfilter/ip_conntrack_netlink.c
--- a/net/ipv4/netfilter/ip_conntrack_netlink.c
+++ b/net/ipv4/netfilter/ip_conntrack_netlink.c
@@ -593,7 +593,7 @@ static int ctnetlink_parse_nat_proto(str
nfattr_parse_nested(tb, CTA_PROTONAT_MAX, attr);
if (nfattr_bad_size(tb, CTA_PROTONAT_MAX, cta_min_protonat))
- return -1;
+ return -EINVAL;
npt =
ip_nat_proto_find_get(ct->tuplehash[IP_CT_DIR_ORIGINAL].tuple.dst.protonum);
if (!npt)
--
- Harald Welte <[EMAIL PROTECTED]> http://netfilter.org/
============================================================================
"Fragmentation is like classful addressing -- an interesting early
architectural error that shows how much experimentation was going
on while IP was being designed." -- Paul Vixie
pgpjrvtNrVHQf.pgp
Description: PGP signature
