lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20240613094249.32658-1-wujianguo106@163.com>
Date: Thu, 13 Jun 2024 17:42:45 +0800
From: wujianguo106@....com
To: netdev@...r.kernel.org
Cc: kuba@...nel.org,
	edumazet@...gle.com,
	contact@...elbtn.com,
	pablo@...filter.org,
	dsahern@...nel.org,
	pabeni@...hat.com,
	wujianguo106@....com,
	Jianguo Wu <wujianguo@...natelecom.cn>
Subject: [PATCH net v3 0/4] fix NULL dereference trigger by SRv6 with netfilter

From: Jianguo Wu <wujianguo@...natelecom.cn>

v3:
 - move the sysctl nf_hooks_lwtunnel into the netfilter core.
 - add CONFIG_IP_NF_MATCH_RPFILTER/CONFIG_IP6_NF_MATCH_RPFILTER
   into selftest net/config.
 - set selftrest scripts file mode to 755.

v2:
 - fix commit log.
 - add two selftests.

Jianguo Wu (4):
  seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and
    End.DX6 behaviors
  netfilter: move the sysctl nf_hooks_lwtunnel into the netfilter core
  selftests: add selftest for the SRv6 End.DX4 behavior with netfilter
  selftests: add selftest for the SRv6 End.DX6 behavior with netfilter

 include/net/netns/netfilter.h                 |   3 +
 net/ipv6/seg6_local.c                         |   8 +-
 net/netfilter/core.c                          |  13 +-
 net/netfilter/nf_conntrack_standalone.c       |  15 -
 net/netfilter/nf_hooks_lwtunnel.c             |  68 ++++
 net/netfilter/nf_internals.h                  |   6 +
 tools/testing/selftests/net/Makefile          |   2 +
 tools/testing/selftests/net/config            |   2 +
 .../net/srv6_end_dx4_netfilter_test.sh        | 335 +++++++++++++++++
 .../net/srv6_end_dx6_netfilter_test.sh        | 340 ++++++++++++++++++
 10 files changed, 771 insertions(+), 21 deletions(-)
 create mode 100755 tools/testing/selftests/net/srv6_end_dx4_netfilter_test.sh
 create mode 100755 tools/testing/selftests/net/srv6_end_dx6_netfilter_test.sh

-- 
2.25.1

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ