Validate netmask in traffic_selector_create_from_subnet

Fixes #216.
author: Tobias Brunner <tobias@strongswan.org> 2012-08-13 12:57:41 +0200
committer: Tobias Brunner <tobias@strongswan.org> 2012-08-13 13:46:19 +0200
commit: 305d98b7806aadfecf5d4ab08e66d212b68f9af1 (patch)
tree: 7588f759ae762e9c7165981885574e3c276be3e6 /src/libstrongswan
parent: 36a3981d475513ad018abbc70617ea4534ffd7e4 (diff)
download: strongswan-305d98b7806aadfecf5d4ab08e66d212b68f9af1.tar.bz2
strongswan-305d98b7806aadfecf5d4ab08e66d212b68f9af1.tar.xz
1 files changed, 1 insertions, 0 deletions
diff --git a/src/libstrongswan/selectors/traffic_selector.c b/src/libstrongswan/selectors/traffic_selector.c
index bc814eadd..38d4b2d06 100644
--- a/src/libstrongswan/selectors/traffic_selector.c
+++ b/src/libstrongswan/selectors/traffic_selector.c
@@ -757,6 +757,7 @@ traffic_selector_t *traffic_selector_create_from_subnet(host_t *net,
 	}
 	from = net->get_address(net);
 	memcpy(this->from, from.ptr, from.len);
+	netbits = min(netbits, this->type == TS_IPV4_ADDR_RANGE ? 32 : 128);
 	calc_range(this, netbits);
 	if (port)
 	{
author	Tobias Brunner <tobias@strongswan.org>	2012-08-13 12:57:41 +0200
committer	Tobias Brunner <tobias@strongswan.org>	2012-08-13 13:46:19 +0200
commit	305d98b7806aadfecf5d4ab08e66d212b68f9af1 (patch)
tree	7588f759ae762e9c7165981885574e3c276be3e6 /src/libstrongswan
parent	36a3981d475513ad018abbc70617ea4534ffd7e4 (diff)
download	strongswan-305d98b7806aadfecf5d4ab08e66d212b68f9af1.tar.bz2 strongswan-305d98b7806aadfecf5d4ab08e66d212b68f9af1.tar.xz