lk/linux-kernel-test
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

netfilter: xt_connlimit: use hotdrop jump mark

Browse Source 
Signed-off-by: Richard Weinberger <richard@nod.at>
Signed-off-by: Jan Engelhardt <jengelh@medozas.de>
This commit is contained in:
Richard Weinberger
2011-01-18 01:36:57 +01:00
committed by Jan Engelhardt
parent ae9d67aff6
commit 1cc34c30be
1 changed files with 2 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
net/netfilter/xt_connlimit.c
View File

@@ -204,11 +204,9 @@ connlimit_mt(const struct sk_buff *skb, struct xt_action_param *par)
&info->mask, par->family); &info->mask, par->family);
spin_unlock_bh(&info->data->lock); spin_unlock_bh(&info->data->lock);
if (connections < 0) { if (connections < 0)
/* kmalloc failed, drop it entirely */ /* kmalloc failed, drop it entirely */
par->hotdrop = true; goto hotdrop;
return false;
}
return (connections > info->limit) ^ info->inverse; return (connections > info->limit) ^ info->inverse;