Home Explore Help
Register Sign In
phyus
/
linux-vybrid_public
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

netfilter: ipset: "Directory not empty" error message

When an entry flagged with "nomatch" was tested by ipset, it
returned the error message "Kernel error received:
Directory not empty" instead of "<element> is NOT in set <setname>"
(reported by John Brendler).

The internal error code was not properly transformed before returning
to userspace, fixed.

Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Jozsef Kadlecsik 12 years ago
parent
cf1c4a094f
commit
dd82088dab
1 changed files with 2 additions and 1 deletions
Split View Show Diff Stats
  1. 2 1
      net/netfilter/ipset/ip_set_core.c

+ 2 - 1
net/netfilter/ipset/ip_set_core.c
View File 

@@ -1470,7 +1470,8 @@ ip_set_utest(struct sock *ctnl, struct sk_buff *skb,
 
 	if (ret == -EAGAIN)
 
 		ret = 1;
 
 
-	return ret < 0 ? ret : ret > 0 ? 0 : -IPSET_ERR_EXIST;
 
+	return (ret < 0 && ret != -ENOTEMPTY) ? ret :
 
+		ret > 0 ? 0 : -IPSET_ERR_EXIST;
 
 }
 
 
 /* Get headed data of a set */