On Tuesday 2008-06-10 13:49, Petr Pisar wrote:
>Hello,
>
>I found regression between iptables 1.4.0 and 1.4.1-rc1 (also in
>1.4.1). The "ip6tables -nL" prints source and destination addresses in
>NETWORK/NETMASK instead of NETWORK/PREFIXLEN as used in iptables 1.4.0.
>
>This doesn't happen if the PREFIXLEN is 0 (i.e. ::/0).
(It does not happen if PREFIXLEN is a multiple of 32.)
Fix below.
commit f52d74a1a83c4fa30fcab8b318d325bb3c9b5535
Author: Jan Engelhardt <jengelh@xxxxxxxxxx>
Date: Tue Jun 10 14:05:21 2008 +0200
ip6tables: fix printing of ipv6 network masks
Signed-off-by: Jan Engelhardt <jengelh@xxxxxxxxxx>
---
xtables.c | 8 ++++----
1 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/xtables.c b/xtables.c
index 8241687..a97bdaa 100644
--- a/xtables.c
+++ b/xtables.c
@@ -1011,10 +1011,10 @@ static int ip6addr_prefix_length(const struct in6_addr *k)
unsigned int bits = 0;
uint32_t a, b, c, d;
- a = k->s6_addr32[0];
- b = k->s6_addr32[1];
- c = k->s6_addr32[2];
- d = k->s6_addr32[3];
+ a = ntohl(k->s6_addr32[0]);
+ b = ntohl(k->s6_addr32[1]);
+ c = ntohl(k->s6_addr32[2]);
+ d = ntohl(k->s6_addr32[3]);
while (a & 0x80000000U) {
++bits;
a <<= 1;
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
