iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/net/netfilter
History
Patrick McHardy 5f7da4d26d [NETFILTER]: nf_conntrack_tcp: catch invalid state updates over ctnetlink 
Invalid states can cause out-of-bound memory accesses of the state table.
Also don't insist on having a new state contained in the netlink message.

Signed-off-by: Patrick McHardy <kaber@trash.net>
2008-04-14 11:15:52 +02:00
..
core.c
[NET] NETNS: Omit net_device->nd_net without CONFIG_NET_NS.
2008-03-26 04:39:53 +09:00
Kconfig
[NETFILTER]: nf_conntrack: add DCCP protocol support
2008-04-14 11:15:49 +02:00
Makefile
[NETFILTER]: nf_conntrack: add DCCP protocol support
2008-04-14 11:15:49 +02:00
nf_conntrack_amanda.c
[NETFILTER]: annotate rest of nf_conntrack_* with const
2008-04-14 11:15:42 +02:00
nf_conntrack_core.c
[NETFILTER]: nf_conntrack: fix smp_processor_id() in preemptible code warning
2008-02-27 12:07:47 -08:00
nf_conntrack_ecache.c
[NETFILTER]: nf_conntrack_expect: function naming unification
2007-07-10 22:17:53 -07:00
nf_conntrack_expect.c
[NETFILTER]: nf_conntrack: introduce expectation classes and policies
2008-03-25 20:09:15 -07:00
nf_conntrack_extend.c
[NETFILTER]: nf_conntrack_extend: warn on confirmed conntracks
2008-04-14 11:15:51 +02:00
nf_conntrack_ftp.c
[NETFILTER]: annotate rest of nf_conntrack_* with const
2008-04-14 11:15:42 +02:00
nf_conntrack_h323_asn1.c
[NETFILTER]: nf_conntrack_h323: constify and annotate H.323 helper
2008-01-31 19:28:07 -08:00
nf_conntrack_h323_main.c
[NETFILTER]: nf_conntrack: introduce expectation classes and policies
2008-03-25 20:09:15 -07:00
nf_conntrack_h323_types.c
[NETFILTER]: nf_conntrack_h323: constify and annotate H.323 helper
2008-01-31 19:28:07 -08:00
nf_conntrack_helper.c
[NETFILTER]: annotate rest of nf_conntrack_* with const
2008-04-14 11:15:42 +02:00
nf_conntrack_irc.c
[NETFILTER]: annotate rest of nf_conntrack_* with const
2008-04-14 11:15:42 +02:00
nf_conntrack_l3proto_generic.c
[NETFILTER]: nf_conntrack: remove print_conntrack function from l3protos
2008-01-28 15:02:41 -08:00
nf_conntrack_netbios_ns.c
[NETFILTER]: nf_conntrack: introduce expectation classes and policies
2008-03-25 20:09:15 -07:00
nf_conntrack_netlink.c
[NETFILTER]: nf_conntrack_netlink: clean up NAT protocol parsing
2008-04-14 11:15:47 +02:00
nf_conntrack_pptp.c
[NETFILTER]: nf_conntrack: introduce expectation classes and policies
2008-03-25 20:09:15 -07:00
nf_conntrack_proto_dccp.c
[NETFILTER]: nf_conntrack: add DCCP protocol support
2008-04-14 11:15:49 +02:00
nf_conntrack_proto_generic.c
[NETFILTER]: nf_conntrack: naming unification
2008-01-31 19:27:59 -08:00
nf_conntrack_proto_gre.c
[NETFILTER]: nf_{conntrack,nat}_proto_gre: annotate with const
2008-01-31 19:28:12 -08:00
nf_conntrack_proto_sctp.c
[NETFILTER]: nf_conntrack: naming unification
2008-01-31 19:27:59 -08:00
nf_conntrack_proto_tcp.c
[NETFILTER]: nf_conntrack_tcp: catch invalid state updates over ctnetlink
2008-04-14 11:15:52 +02:00
nf_conntrack_proto_udp.c
[NETFILTER]: nf_{conntrack,nat}_proto_udp{,lite}: annotate with const
2008-01-31 19:28:11 -08:00
nf_conntrack_proto_udplite.c
[NETFILTER]: Add partial checksum validation helper
2008-04-14 11:15:49 +02:00
nf_conntrack_proto.c
[NETFILTER]: Use the ctl paths instead of hand-made analogue
2008-01-28 15:01:11 -08:00
nf_conntrack_sane.c
[NETFILTER]: nf_conntrack: introduce expectation classes and policies
2008-03-25 20:09:15 -07:00
nf_conntrack_sip.c
[NETFILTER]: nf_conntrack_sip: clear address in parse_addr()
2008-04-14 11:15:45 +02:00
nf_conntrack_standalone.c
[NETFILTER]: nf_conntrack: less hairy ifdefs around proc and sysctl
2008-04-14 09:56:01 +02:00
nf_conntrack_tftp.c
[NETFILTER]: nf_conntrack: introduce expectation classes and policies
2008-03-25 20:09:15 -07:00
nf_internals.h
[NETFILTER]: Replace sk_buff ** with sk_buff *
2007-10-15 12:26:29 -07:00
nf_log.c
[NETFILTER]: Replate direct proc_fops assignment with proc_create call.
2008-03-27 16:55:53 -07:00
nf_queue.c
[NETFILTER]: Replate direct proc_fops assignment with proc_create call.
2008-03-27 16:55:53 -07:00
nf_sockopt.c
[NET] NETNS: Omit sock->sk_net without CONFIG_NET_NS.
2008-03-26 04:39:55 +09:00
nfnetlink_log.c
[NETFILTER]: Replate direct proc_fops assignment with proc_create call.
2008-03-27 16:55:53 -07:00
nfnetlink_queue.c
Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-2.6
2008-03-27 18:48:56 -07:00
nfnetlink.c
[NETNS]: Consolidate kernel netlink socket destruction.
2008-01-28 15:08:07 -08:00
x_tables.c
[NETFILTER]: annotate {arp,ip,ip6,x}tables with const
2008-04-14 11:15:35 +02:00
xt_CLASSIFY.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_comment.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_connbytes.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_connlimit.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_connmark.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_CONNMARK.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_CONNSECMARK.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_conntrack.c
[NETFILTER]: xt_conntrack: fix IPv4 address comparison
2008-02-27 12:20:41 -08:00
xt_dccp.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_dscp.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_DSCP.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_esp.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_hashlimit.c
[NETFILTER]: Replate direct proc_fops assignment with proc_create call.
2008-03-27 16:55:53 -07:00
xt_helper.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_iprange.c
[NETFILTER]: xt_iprange: fix subtraction-based comparison
2008-02-19 17:20:06 -08:00
xt_length.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_limit.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_mac.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_mark.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_MARK.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_multiport.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_NFLOG.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_NFQUEUE.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_NOTRACK.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_owner.c
[NETFILTER]: xt_owner: allow matching UID/GID ranges
2008-01-31 19:27:43 -08:00
xt_physdev.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_pkttype.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_policy.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_quota.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_rateest.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_RATEEST.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_realm.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_sctp.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_SECMARK.c
[NETFILTER]: make secmark_tg_destroy() static
2008-02-13 17:41:39 -08:00
xt_state.c
[NETFILTER]: x_tables: use %u format specifiers
2008-01-28 14:59:07 -08:00
xt_statistic.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_string.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_tcpmss.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_TCPMSS.c
[NETFILTER]: xt_TCPMSS: consider reverse route's MTU in clamp-to-pmtu
2008-01-31 19:27:42 -08:00
xt_TCPOPTSTRIP.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_tcpudp.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_time.c
[NETFILTER]: annotate xtables targets with const and remove casts
2008-04-14 09:56:05 +02:00
xt_TRACE.c
[NETFILTER]: Update modules' descriptions
2008-01-28 15:02:26 -08:00
xt_u32.c
[NETFILTER]: xt_u32: drop the actually unused variable from u32_match_it
2008-02-19 17:18:20 -08:00