It is pretty pointless to use -m quota without specifying --quota.
There would be nothing left to count down on.
Signed-off-by: Jan Engelhardt <jengelh@xxxxxxxxxx>
---
extensions/libxt_quota.c | 10 +++++++++-
1 files changed, 9 insertions(+), 1 deletions(-)
diff --git a/extensions/libxt_quota.c b/extensions/libxt_quota.c
index e6ed9bc..e3699ad 100644
--- a/extensions/libxt_quota.c
+++ b/extensions/libxt_quota.c
@@ -72,12 +72,19 @@ quota_parse(int c, char **argv, int invert, unsigned int *flags,
if (invert)
info->flags |= XT_QUOTA_INVERT;
-
+ *flags |= 1;
break;
}
return 1;
}
+static void quota_check(unsigned int flags)
+{
+ if (flags == 0)
+ xtables_error(PARAMETER_PROBLEM,
+ "quota: the --quota argument must be specified\n");
+}
+
static struct xtables_match quota_match = {
.family = NFPROTO_UNSPEC,
.name = "quota",
@@ -86,6 +93,7 @@ static struct xtables_match quota_match = {
.userspacesize = offsetof(struct xt_quota_info, master),
.help = quota_help,
.parse = quota_parse,
+ .final_check = quota_check,
.print = quota_print,
.save = quota_save,
.extra_opts = quota_opts,
--
1.7.1
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
