ipvs: fix oops in backup for fwmark conn templates

[ Upstream commit: 2ad17defd596ca7e8ba782d5fc6950ee0e99513c ] Fixes bug http://bugzilla.kernel.org/show_bug.cgi?id=10556 where conn templates with protocol=IPPROTO_IP can oops backup box. Result from ip_vs_proto_get() should be checked because protocol value can be invalid or unsupported in backup. But for valid message we should not fail for templates which use IPPROTO_IP. Also, add checks to validate message limits and connection state. Show state NONE for templates using IPPROTO_IP. Fix tested and confirmed by L0op8ack <l0op8ack@hotmail.com> Signed-off-by: Julian Anastasov <ja@ssi.bg> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
author: Julian Anastasov <ja@ssi.bg> 2008-04-29 03:21:23 -0700
committer: Greg Kroah-Hartman <gregkh@suse.de> 2008-05-15 07:50:02 -0700
commit: dbfda7d328029421c1126423646e602c553ea2a2 (patch)
tree: fc6ba9e6079e7c792d647208608e021dc778babc /include
parent: 781ce5ffe1ff6b5b288575d4d42f46cb7a25b175 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/include/net/ip_vs.h b/include/net/ip_vs.h
index 56f3c94ae62..9a51ebad3f1 100644
--- a/include/net/ip_vs.h
+++ b/include/net/ip_vs.h
@@ -405,7 +405,8 @@ struct sk_buff;
 struct ip_vs_protocol {
 	struct ip_vs_protocol	*next;
 	char			*name;
-	__u16			protocol;
+	u16			protocol;
+	u16			num_states;
 	int			dont_defrag;
 	atomic_t		appcnt;		/* counter of proto app incs */
 	int			*timeout_table;	/* protocol timeout table */
author	Julian Anastasov <ja@ssi.bg>	2008-04-29 03:21:23 -0700
committer	Greg Kroah-Hartman <gregkh@suse.de>	2008-05-15 07:50:02 -0700
commit	dbfda7d328029421c1126423646e602c553ea2a2 (patch)
tree	fc6ba9e6079e7c792d647208608e021dc778babc /include
parent	781ce5ffe1ff6b5b288575d4d42f46cb7a25b175 (diff)