diff options
author | Patrick McHardy <kaber@trash.net> | 2007-11-30 23:58:03 +1100 |
---|---|---|
committer | Herbert Xu <herbert@gondor.apana.org.au> | 2007-11-30 23:58:03 +1100 |
commit | 9dc0564e862b1b9a4677dec2c736b12169e03e99 (patch) | |
tree | 01e6a810f2c229bd68ac0c07778f8594481e82c5 /net | |
parent | 3ccd86241b277249d5ac08e91eddfade47184520 (diff) | |
download | op-kernel-dev-9dc0564e862b1b9a4677dec2c736b12169e03e99.zip op-kernel-dev-9dc0564e862b1b9a4677dec2c736b12169e03e99.tar.gz |
[NETFILTER]: xt_TCPMSS: remove network triggerable WARN_ON
ipv6_skip_exthdr() returns -1 for invalid packets. don't WARN_ON
that.
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Diffstat (limited to 'net')
-rw-r--r-- | net/netfilter/xt_TCPMSS.c | 4 |
1 files changed, 1 insertions, 3 deletions
diff --git a/net/netfilter/xt_TCPMSS.c b/net/netfilter/xt_TCPMSS.c index 07435a6..8e76d1f 100644 --- a/net/netfilter/xt_TCPMSS.c +++ b/net/netfilter/xt_TCPMSS.c @@ -174,10 +174,8 @@ xt_tcpmss_target6(struct sk_buff *skb, nexthdr = ipv6h->nexthdr; tcphoff = ipv6_skip_exthdr(skb, sizeof(*ipv6h), &nexthdr); - if (tcphoff < 0) { - WARN_ON(1); + if (tcphoff < 0) return NF_DROP; - } ret = tcpmss_mangle_packet(skb, targinfo, tcphoff, sizeof(*ipv6h) + sizeof(struct tcphdr)); if (ret < 0) |