]> err.no Git - linux-2.6/commit
[NETFILTER]: nf_conntrack_ftp: fix newline sequence number calculation
authorPatrick McHardy <kaber@trash.net>
Thu, 24 May 2007 23:41:50 +0000 (16:41 -0700)
committerDavid S. Miller <davem@davemloft.net>
Thu, 24 May 2007 23:41:50 +0000 (16:41 -0700)
commit25b86e05467a2bf936b78695ef49039e3bbd1e0c
tree756282cad7ea20d2df257633c799d0b6baceba46
parent5fe26f53fe9e2ba5dca2835a4ca69d0ba7b5f707
[NETFILTER]: nf_conntrack_ftp: fix newline sequence number calculation

When the packet size is changed by the FTP NAT helper, the connection
tracking helper adjusts the sequence number of the newline character
by the size difference. This is wrong because NAT sequence number
adjustment happens after helpers are called, so the unadjusted number
is compared to the already adjusted one.

Based on report by YU, Haitao <yuhaitao@tsinghua.org.cn>

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
include/linux/netfilter/nf_conntrack_ftp.h
net/ipv4/netfilter/nf_nat_ftp.c
net/netfilter/nf_conntrack_ftp.c