hamza.kesraoui/sst-linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
eea50e36c8
sst-linux/net/ipv4/netfilter
History
Florian Westphal 0f6dcaf4cd netfilter: fib: check correct rtable in vrf setups 
[ Upstream commit 05ef7055debc804e8083737402127975e7244fc4 ]

We need to init l3mdev unconditionally, else main routing table is searched
and incorrect result is returned unless strict (iif keyword) matching is
requested.

Next patch adds a selftest for this.

Fixes: 2a8a7c0eaa ("netfilter: nft_fib: Fix for rpath check with VRF devices")
Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1761
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2024-10-17 15:22:22 +02:00
..
arp_tables.c netfilter: complete validation of user input 2024-04-17 11:18:25 +02:00
arpt_mangle.c
arptable_filter.c
ip_tables.c netfilter: complete validation of user input 2024-04-17 11:18:25 +02:00
ipt_ah.c
ipt_CLUSTERIP.c
ipt_ECN.c
ipt_REJECT.c
ipt_rpfilter.c
ipt_SYNPROXY.c
iptable_filter.c
iptable_mangle.c
iptable_nat.c netfilter: iptables: Fix null-ptr-deref in iptable_nat_table_init(). 2024-08-11 12:35:58 +02:00
iptable_raw.c
iptable_security.c
Kconfig
Makefile
nf_defrag_ipv4.c
nf_dup_ipv4.c netfilter: nf_tables: prevent nf_skb_duplicated corruption 2024-10-17 15:21:31 +02:00
nf_nat_h323.c
nf_nat_pptp.c
nf_nat_snmp_basic_main.c
nf_nat_snmp_basic.asn1
nf_reject_ipv4.c netfilter: nf_reject: Fix build warning when CONFIG_BRIDGE_NETFILTER=n 2024-10-17 15:22:16 +02:00
nf_socket_ipv4.c
nf_tproxy_ipv4.c netfilter: tproxy: bail out if IP has been disabled on the device 2024-06-12 11:03:57 +02:00
nft_dup_ipv4.c
nft_fib_ipv4.c netfilter: fib: check correct rtable in vrf setups 2024-10-17 15:22:22 +02:00
nft_reject_ipv4.c