netfilter: use fwmark_reflect in nf_send_reset
authorPau Espin Pedrol <pau.espin@tessares.net>
Fri, 6 Jan 2017 19:33:27 +0000 (20:33 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 9 Jan 2017 17:01:03 +0000 (18:01 +0100)
commitcc31d43b4154ad5a7d8aa5543255a93b7e89edc2
tree964f49666b06bf3c1cb918aaeb70d5bd6affa74d
parent03430fa10b99e95e3a15eb7c00978fb1652f3b24
netfilter: use fwmark_reflect in nf_send_reset

Otherwise, RST packets generated by ipt_REJECT always have mark 0 when
the routing is checked later in the same code path.

Fixes: e110861f8609 ("net: add a sysctl to reflect the fwmark on replies")
Cc: Lorenzo Colitti <lorenzo@google.com>
Signed-off-by: Pau Espin Pedrol <pau.espin@tessares.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/ipv4/netfilter/nf_reject_ipv4.c
net/ipv6/netfilter/nf_reject_ipv6.c