[NETFILTER]: Fix two broken checks for options in ipt_LOG

Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: Harald Welte <laforge@netfilter.org> Signed-off-by: David S. Miller <davem@redhat.com>

[NETFILTER]: Fix two broken checks for options in ipt_LOG
Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: Harald Welte <laforge@netfilter.org> Signed-off-by: David S. Miller <davem@redhat.com>
1fe7d5a3 · Patrick McHardy · David S. Miller · afb7238d · 1fe7d5a3
Commit 1fe7d5a3 authored Jul 07, 2004 by Patrick McHardy Committed by David S. Miller Jul 07, 2004
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

net/ipv4/netfilter/ipt_LOG.c net/ipv4/netfilter/ipt_LOG.c +2 -2

No files found.
--- a/net/ipv4/netfilter/ipt_LOG.c
+++ b/net/ipv4/netfilter/ipt_LOG.c
@@ -76,7 +76,7 @@ static void dump_packet(const struct ipt_log_info *info,
 		printk("FRAG:%u ", ntohs(iph.frag_off) & IP_OFFSET);
 	if ((info->logflags & IPT_LOG_IPOPT)
-	    && iph.ihl * 4 != sizeof(struct iphdr)) {
+	    && iph.ihl * 4 > sizeof(struct iphdr)) {
 		unsigned char opt[4 * 15 - sizeof(struct iphdr)];
 		unsigned int i, optsize;
@@ -143,7 +143,7 @@ static void dump_packet(const struct ipt_log_info *info,
 		printk("URGP=%u ", ntohs(tcph.urg_ptr));
 		if ((info->logflags & IPT_LOG_TCPOPT)
-		    && tcph.doff * 4 != sizeof(struct tcphdr)) {
+		    && tcph.doff * 4 > sizeof(struct tcphdr)) {
 			unsigned char opt[4 * 15 - sizeof(struct tcphdr)];
 			unsigned int i, optsize;