linux

History

Julian Anastasov ed6e4ef836 netfilter: Fix ip_route_me_harder triggering ip_rt_bug Avoid creating input routes with ip_route_me_harder. It does not work for locally generated packets. Instead, restrict sockets to provide valid saddr for output route (or unicast saddr for transparent proxy). For other traffic allow saddr to be unicast or local but if callers forget to check saddr type use 0 for the output route. The resulting handling should be: - REJECT TCP: - in INPUT we can provide addr_type = RTN_LOCAL but better allow rejecting traffic delivered with local route (no IP address => use RTN_UNSPEC to allow also RTN_UNICAST). - FORWARD: RTN_UNSPEC => allow RTN_LOCAL/RTN_UNICAST saddr, add fix to ignore RTN_BROADCAST and RTN_MULTICAST - OUTPUT: RTN_UNSPEC - NAT, mangle, ip_queue, nf_ip_reroute: RTN_UNSPEC in LOCAL_OUT - IPVS: - use RTN_LOCAL in LOCAL_OUT and FORWARD after SNAT to restrict saddr to be local Signed-off-by: Julian Anastasov <ja@ssi.bg> Signed-off-by: David S. Miller <davem@davemloft.net>		2011-06-29 05:47:32 -07:00
..
9p	Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/roland/infiniband	2011-05-26 12:13:57 -07:00
802	snap: remove one synchronize_net()	2011-05-23 16:29:24 -04:00
8021q	vlan: don't call ndo_vlan_rx_register on hardware that doesn't have vlan support	2011-06-17 00:12:51 -04:00
appletalk	appletalk: Fix OOPS in atalk_release().	2011-03-31 18:59:10 -07:00
atm	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-2.6	2011-05-27 11:16:27 -07:00
ax25	ax25: Fix set-but-unused variable.	2011-04-17 00:48:31 -07:00
batman-adv	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6	2011-05-20 13:43:21 -07:00
bluetooth	Bluetooth: Fix L2CAP connection establishment	2011-06-15 15:03:37 -03:00
bridge	bridge: Only flood unregistered groups to routers	2011-06-24 17:52:51 -07:00
caif	caif: Bugfix - XOFF removed channel from caif-mux	2011-06-16 23:59:09 -04:00
can	can: convert to %pK for kptr_restrict support	2011-05-26 14:23:35 -04:00
ceph	ceph: fix sync vs canceled write	2011-06-07 21:34:13 -07:00
core	Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs-2.6	2011-06-16 10:21:59 -07:00
dcb	net: dcbnl: Update copyright dates	2011-03-14 17:02:42 -07:00
dccp	ipv4: Make caller provide flowi4 key to inet_csk_route_req().	2011-05-18 18:32:03 -04:00
decnet	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6	2011-05-20 13:43:21 -07:00
dns_resolver	KEYS: Improve /proc/keys	2011-03-17 11:59:32 +11:00
dsa	Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/davem/net-2.6	2011-05-05 14:59:02 -07:00
econet	econet: Fix set-but-unused variable.	2011-04-17 00:15:22 -07:00
ethernet	…
ieee802154	ieee802154: Don't leak memory in ieee802154_nl_fill_phy	2011-06-13 18:03:22 -04:00
ipv4	netfilter: Fix ip_route_me_harder triggering ip_rt_bug	2011-06-29 05:47:32 -07:00
ipv6	udp/recvmsg: Clear MSG_TRUNC flag when starting over for a new packet	2011-06-21 22:34:27 -07:00
ipx	ipx: fix ipx_release()	2011-03-21 18:16:39 -07:00
irda	irda: iriap: Use seperate lockdep class for irias_objects->hb_spinlock	2011-06-06 17:00:35 -07:00
iucv	[S390] irq: merge irq.c and s390_ext.c	2011-05-26 09:48:24 +02:00
key	net: convert %p usage to %pK	2011-05-24 01:13:12 -04:00
l2tp	fix return values of l2tp_dfs_seq_open()	2011-06-05 14:11:09 -07:00
lapb	…
llc	llc: Fix length check in llc_fixup_skb().	2011-04-11 18:59:05 -07:00
mac80211	mac80211: fix IBSS teardown race	2011-06-08 14:19:05 -04:00
netfilter	netfilter: fix looped (broad\|multi)cast's MAC handling	2011-06-16 17:27:04 +02:00
netlabel	Remove prefetch() from <linux/skbuff.h> and "netlabel_addrlist.h"	2011-05-22 21:43:41 -07:00
netlink	net: convert %p usage to %pK	2011-05-24 01:13:12 -04:00
netrom	NET: AX.25, NETROM, ROSE: Remove SOCK_DEBUG calls	2011-04-14 00:20:07 -07:00
packet	af_packet: prevent information leak	2011-06-06 22:42:06 -07:00
phonet	net: convert %p usage to %pK	2011-05-24 01:13:12 -04:00
rds	RDMA/cma: Pass QP type into rdma_create_id()	2011-05-25 13:46:23 -07:00
rfkill	net: rfkill: add generic gpio rfkill driver	2011-05-19 13:53:54 -04:00
rose	NET: AX.25, NETROM, ROSE: Remove SOCK_DEBUG calls	2011-04-14 00:20:07 -07:00
rxrpc	rxrpc: Fix set but unused variable 'usage' in rxrpc_get_transport()	2011-05-19 18:51:50 -04:00
sched	net: Rework netdev_drivername() to avoid warning.	2011-06-06 16:41:33 -07:00
sctp	sctp: stop pending timers and purge queues when peer restart asoc	2011-05-31 15:29:17 -07:00
sunrpc	nfsd: fix dependency of nfsd on auth_rpcgss	2011-06-06 15:07:15 -04:00
tipc	tipc: Revise timings used when sending link request messages	2011-05-10 16:04:02 -04:00
unix	net: convert %p usage to %pK	2011-05-24 01:13:12 -04:00
wanrouter	Fix common misspellings	2011-03-31 11:26:23 -03:00
wimax	…
wireless	nl80211: fix overflow in ssid_len	2011-06-07 14:19:07 -04:00
x25	Fix common misspellings	2011-03-31 11:26:23 -03:00
xfrm	xfrm: Fix off by one in the replay advance functions	2011-06-07 21:14:39 -07:00
Kconfig	bpf: depends on MODULES	2011-04-29 10:20:53 -07:00
Makefile	net: Enter net/ipv6/ even if CONFIG_IPV6=n	2011-03-07 12:50:52 -08:00
TUNABLE	…
compat.c	net: Add sendmmsg socket system call	2011-05-05 11:10:14 -07:00
nonet.c	…
socket.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next-2.6	2011-05-20 13:43:21 -07:00
sysctl_net.c	…