| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 13 Jun 2024 17:42:45 +0800
From: wujianguo106@....com
To: netdev@...r.kernel.org
Cc: kuba@...nel.org,
edumazet@...gle.com,
contact@...elbtn.com,
pablo@...filter.org,
dsahern@...nel.org,
pabeni@...hat.com,
wujianguo106@....com,
Jianguo Wu <wujianguo@...natelecom.cn>
Subject: [PATCH net v3 0/4] fix NULL dereference trigger by SRv6 with netfilter
From: Jianguo Wu <wujianguo@...natelecom.cn>
v3:
- move the sysctl nf_hooks_lwtunnel into the netfilter core.
- add CONFIG_IP_NF_MATCH_RPFILTER/CONFIG_IP6_NF_MATCH_RPFILTER
into selftest net/config.
- set selftrest scripts file mode to 755.
v2:
- fix commit log.
- add two selftests.
Jianguo Wu (4):
seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and
End.DX6 behaviors
netfilter: move the sysctl nf_hooks_lwtunnel into the netfilter core
selftests: add selftest for the SRv6 End.DX4 behavior with netfilter
selftests: add selftest for the SRv6 End.DX6 behavior with netfilter
include/net/netns/netfilter.h | 3 +
net/ipv6/seg6_local.c | 8 +-
net/netfilter/core.c | 13 +-
net/netfilter/nf_conntrack_standalone.c | 15 -
net/netfilter/nf_hooks_lwtunnel.c | 68 ++++
net/netfilter/nf_internals.h | 6 +
tools/testing/selftests/net/Makefile | 2 +
tools/testing/selftests/net/config | 2 +
.../net/srv6_end_dx4_netfilter_test.sh | 335 +++++++++++++++++
.../net/srv6_end_dx6_netfilter_test.sh | 340 ++++++++++++++++++
10 files changed, 771 insertions(+), 21 deletions(-)
create mode 100755 tools/testing/selftests/net/srv6_end_dx4_netfilter_test.sh
create mode 100755 tools/testing/selftests/net/srv6_end_dx6_netfilter_test.sh
--
2.25.1
Powered by blists - more mailing lists