[NETFILTER]: convert nfmark and conntrack mark to 32bit As discussed at netconf'05, we convert nfmark and conntrack-mark to be 32bits even on 64bit architectures. Signed-off-by: Harald Welte <laforge@netfilter.org> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: bf3a46aa9b96f6eb3a49a568f72a2801c3e830c0 [log] [tgz]
author: Harald Welte <laforge@netfilter.org> Tue Aug 09 19:22:01 2005 -0700
committer: David S. Miller <davem@sunset.davemloft.net> Mon Aug 29 15:29:31 2005 -0700
tree: 4387ee7d8ef83348338a9d433c93139a4747dcb5
parent: 8f3d17fb7bcb7c255197d11469fb5e9695c9d2f4 [diff] [blame]
diff --git a/net/ipv4/netfilter/ipt_connmark.c b/net/ipv4/netfilter/ipt_connmark.c
index 2706f96..bf8de47 100644
--- a/net/ipv4/netfilter/ipt_connmark.c
+++ b/net/ipv4/netfilter/ipt_connmark.c

@@ -54,9 +54,16 @@
 	   unsigned int matchsize,
 	   unsigned int hook_mask)
 {
+	struct ipt_connmark_info *cm = 
+				(struct ipt_connmark_info *)matchinfo;
 	if (matchsize != IPT_ALIGN(sizeof(struct ipt_connmark_info)))
 		return 0;
 
+	if (cm->mark > 0xffffffff || cm->mask > 0xffffffff) {
+		printk(KERN_WARNING "connmark: only support 32bit mark\n");
+		return 0;
+	}
+
 	return 1;
 }
commit	bf3a46aa9b96f6eb3a49a568f72a2801c3e830c0	[log] [tgz]
author	Harald Welte <laforge@netfilter.org>	Tue Aug 09 19:22:01 2005 -0700
committer	David S. Miller <davem@sunset.davemloft.net>	Mon Aug 29 15:29:31 2005 -0700
tree	4387ee7d8ef83348338a9d433c93139a4747dcb5
parent	8f3d17fb7bcb7c255197d11469fb5e9695c9d2f4 [diff] [blame]