| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20160701143002.GA14239@salvia> Date: Fri, 1 Jul 2016 16:30:02 +0200 From: Pablo Neira Ayuso <pablo@...filter.org> To: Vishwanath Pai <vpai@...mai.com> Cc: kaber@...sh.net, kadlec@...ckhole.kfki.hu, johunt@...mai.com, davem@...emloft.net, netfilter-devel@...r.kernel.org, coreteam@...filter.org, linux-kernel@...r.kernel.org, netdev@...r.kernel.org, pai.vishwain@...il.com, ilubashe@...mai.com, jdollard@...mai.com Subject: Re: [PATCH v3] netfilter/nflog: nflog-range does not truncate packets (userspace) On Fri, Jun 24, 2016 at 04:42:31PM -0400, Vishwanath Pai wrote: > Added tests to libxt_NFLOG.t for the new option --nflog-size > > -- > > netfilter/nflog: nflog-range does not truncate packets > > The option --nflog-range has never worked, but we cannot just fix this > because users might be using this feature option and their behavior would > change. Instead add a new option --nflog-size. This option works the same > way nflog-range should have, and both of them are mutually exclusive. When > someone uses --nflog-range we print a warning message informing them that > this feature has no effect. > > To indicate the kernel that the user has set --nflog-size we have to pass a > new flag XT_NFLOG_F_COPY_LEN. > > Also updated the man page to reflect the new option and added tests to > extensions/libxt_NFLOG.t Applied to iptables userspace, thanks.
Powered by blists - more mailing lists