| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20160623173423.GA2284@salvia> Date: Thu, 23 Jun 2016 19:34:23 +0200 From: Pablo Neira Ayuso <pablo@...filter.org> To: Vishwanath Pai <vpai@...mai.com> Cc: kaber@...sh.net, kadlec@...ckhole.kfki.hu, johunt@...mai.com, daviem@...emloft.net, netfilter-devel@...r.kernel.org, coreteam@...filter.org, linux-kernel@...r.kernel.org, netdev@...r.kernel.org, pai.vishwain@...il.com, ilubashe@...mai.com, jdollard@...mai.com Subject: Re: [PATCH v2 1/2] netfilter/nflog: nflog-range does not truncate packets On Tue, Jun 21, 2016 at 02:58:46PM -0400, Vishwanath Pai wrote: > netfilter/nflog: nflog-range does not truncate packets > > li->u.ulog.copy_len is currently ignored by the kernel, we should truncate > the packet to either li->u.ulog.copy_len (if set) or copy_range before > sending it to userspace. 0 is a valid input for copy_len, so add a new > flag to indicate whether this was option was specified by the user or not. > > Add two flags to indicate whether nflog-size/copy_len was set or not. > XT_NFLOG_F_COPY_LEN is for XT_NFLOG and NFLOG_F_COPY_LEN for nfnetlink_log > > On the userspace side, this was initially represented by the option > nflog-range, this will be replaced by --nflog-size now. --nflog-range would > still exist but does not do anything. Applied, thanks!
Powered by blists - more mailing lists