netfilter: nf_nat: change sequence number adjustments to 32 bits

Using 16 bits is too small, when many adjustments happen the offsets might overflow and break the connection. Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Patrick McHardy 2013-07-28 22:54:10 +0200
committer: Pablo Neira Ayuso 2013-07-31 19:54:51 +0200
commit: 2d89c68ac78ae432038ef23371d2fa949d725d43 (patch)
tree: 9eb19fc7550976ff633849e95c752a34f19df4f2 /net/netfilter/nf_conntrack_core.c
parent: netfilter: nf_nat: fix locking in nf_nat_seq_adjust() (diff)
download: kernel-qcow2-linux-2d89c68ac78ae432038ef23371d2fa949d725d43.tar.gz
kernel-qcow2-linux-2d89c68ac78ae432038ef23371d2fa949d725d43.tar.xz
kernel-qcow2-linux-2d89c68ac78ae432038ef23371d2fa949d725d43.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/net/netfilter/nf_conntrack_core.c b/net/netfilter/nf_conntrack_core.c
index 089e408676fa..0934611ff9f3 100644
--- a/net/netfilter/nf_conntrack_core.c
+++ b/net/netfilter/nf_conntrack_core.c
@@ -1695,7 +1695,7 @@ err_stat:
 	return ret;
 }
 
-s16 (*nf_ct_nat_offset)(const struct nf_conn *ct,
+s32 (*nf_ct_nat_offset)(const struct nf_conn *ct,
 			enum ip_conntrack_dir dir,
 			u32 seq);
 EXPORT_SYMBOL_GPL(nf_ct_nat_offset);
author	Patrick McHardy	2013-07-28 22:54:10 +0200
committer	Pablo Neira Ayuso	2013-07-31 19:54:51 +0200
commit	2d89c68ac78ae432038ef23371d2fa949d725d43 (patch)
tree	9eb19fc7550976ff633849e95c752a34f19df4f2 /net/netfilter/nf_conntrack_core.c
parent	netfilter: nf_nat: fix locking in nf_nat_seq_adjust() (diff)
download	kernel-qcow2-linux-2d89c68ac78ae432038ef23371d2fa949d725d43.tar.gz kernel-qcow2-linux-2d89c68ac78ae432038ef23371d2fa949d725d43.tar.xz kernel-qcow2-linux-2d89c68ac78ae432038ef23371d2fa949d725d43.zip