FEX-Emu/linux
1
0
Fork 0
mirror of https://github.com/FEX-Emu/linux.git synced 2024-12-25 19:07:46 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
29afc4e9a4
linux/net/bridge/netfilter
History
Pablo Neira Ayuso 75e8d06d43 netfilter: nf_tables: validate hooks in NAT expressions 
The user can crash the kernel if it uses any of the existing NAT
expressions from the wrong hook, so add some code to validate this
when loading the rule.

This patch introduces nft_chain_validate_hooks() which is based on
an existing function in the bridge version of the reject expression.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
2015-01-19 14:52:39 +01:00
..
ebt_802_3.c
ebt_among.c
ebt_arp.c
ebt_arpreply.c
ebt_dnat.c
ebt_ip6.c
ebt_ip.c
ebt_limit.c
ebt_log.c netfilter: bridge: add generic packet logger 2014-06-27 13:20:47 +02:00
ebt_mark_m.c
ebt_mark.c
ebt_nflog.c
ebt_pkttype.c
ebt_redirect.c
ebt_snat.c
ebt_stp.c
ebt_vlan.c
ebtable_broute.c
ebtable_filter.c
ebtable_nat.c
ebtables.c netfilter: ebtables: create audit records for replaces 2014-09-09 16:31:28 +02:00
Kconfig netfilter: bridge: add reject support 2014-07-22 12:00:22 +02:00
Makefile netfilter: kill remnants of ulog targets 2014-07-25 14:55:44 +02:00
nf_log_bridge.c netfilter: bridge: add generic packet logger 2014-06-27 13:20:47 +02:00
nf_tables_bridge.c netfilter: nf_tables_bridge: set the pktinfo for IPv4/IPv6 traffic 2014-11-27 13:08:29 +01:00
nft_meta_bridge.c
nft_reject_bridge.c netfilter: nf_tables: validate hooks in NAT expressions 2015-01-19 14:52:39 +01:00