averello/linux-stable-mirror
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2026-06-11 15:46:40 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
faeb7c279e482fa85dbe538324764bb75cd07175
linux-stable-mirror/net/ipv6
T
History
Florian Westphal 875fefda91 netfilter: ip6t_rpfilter: set F_IFACE for linklocal addresses 
[ Upstream commit da786717e0 ]

Roman reports that DHCPv6 client no longer sees replies from server
due to

ip6tables -t raw -A PREROUTING -m rpfilter --invert -j DROP

rule.  We need to set the F_IFACE flag for linklocal addresses, they
are scoped per-device.

Fixes: 47b7e7f828 ("netfilter: don't set F_IFACE on ipv6 fib lookups")
Reported-by: Roman Mamedov <rm@romanrm.net>
Tested-by: Roman Mamedov <rm@romanrm.net>
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <alexander.levin@microsoft.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2018-09-15 09:46:48 +02:00
..
ila
treewide: kvmalloc() -> kvmalloc_array()
2018-06-12 16:19:22 -07:00
netfilter
netfilter: ip6t_rpfilter: set F_IFACE for linklocal addresses
2018-09-15 09:46:48 +02:00
addrconf_core.c
net/ipv6: Add helper to return path MTU based on fib result
2018-05-22 10:51:09 +02:00
addrconf.c
ipv6: use fib6_info_hold_safe() when necessary
2018-07-23 11:19:02 -07:00
addrlabel.c
net: Drop pernet_operations::async
2018-03-27 13:18:09 -04:00
af_inet6.c
Revert changes to convert to ->poll_mask() and aio IOCB_CMD_POLL
2018-06-28 10:40:47 -07:00
ah6.c
anycast.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
2018-06-06 18:39:49 -07:00
calipso.c
ipv6: make ipv6_renew_options() interrupt/kernel safe
2018-07-05 20:15:26 +09:00
datagram.c
ip: in cmsg IP(V6)_ORIGDSTADDR call pskb_may_pull
2018-07-24 16:35:58 -07:00
esp6_offload.c
esp6.c
esp6: fix memleak on error path in esp6_input
2018-06-27 17:32:11 +02:00
exthdrs_core.c
net: ipv6: Fix typo in ipv6_find_hdr() documentation
2018-05-07 23:50:27 -04:00
exthdrs_offload.c
exthdrs.c
ipv6: make ipv6_renew_options() interrupt/kernel safe
2018-07-05 20:15:26 +09:00
fib6_notifier.c
fib6_rules.c
net/ipv6: Add fib6_lookup
2018-05-11 00:10:56 +02:00
fou6.c
icmp.c
net/ipv6: Fix linklocal to global address with VRF
2018-07-21 19:31:46 -07:00
inet6_connection_sock.c
inet6_hashtables.c
net/tcp: Fix socket lookups with SO_BINDTODEVICE
2018-06-20 08:03:06 +09:00
ip6_checksum.c
ip6_fib.c
net/ipv6: Put lwtstate when destroying fib6_info
2018-09-15 09:46:43 +02:00
ip6_flowlabel.c
proc: introduce proc_create_net{,_data}
2018-05-16 07:24:30 +02:00
ip6_gre.c
erspan: set erspan_ver to 1 by default when adding an erspan dev
2018-09-15 09:46:42 +02:00
ip6_icmp.c
ip6_input.c
ipv6: Count interface receive statistics on the ingress netdev
2018-04-17 13:39:51 -04:00
ip6_offload.c
udp: add udp gso
2018-04-26 15:07:42 -04:00
ip6_offload.h
ip6_output.c
ip: hash fragments consistently
2018-07-23 11:39:30 -07:00
ip6_tunnel.c
ip6_tunnel: use the right value for ipv4 min mtu check in ip6_tnl_xmit
2018-08-05 17:35:02 -07:00
ip6_udp_tunnel.c
ip6_vti.c
ip6_vti: fix a null pointer deference when destroy vti6 tunnel
2018-09-15 09:46:44 +02:00
ip6mr.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
2018-06-06 18:39:49 -07:00
ipcomp6.c
ipv6_sockglue.c
ipv6/mcast: init as INCLUDE when join SSM INCLUDE group
2018-07-16 11:20:06 -07:00
Kconfig
ipv6: ila: select CONFIG_DST_CACHE
2018-07-18 10:22:37 -07:00
Makefile
mcast_snoop.c
mcast.c
multicast: do not restore deleted record source filter mode to new one
2018-07-21 22:58:17 -07:00
mip6.c
ndisc.c
ipv6: make DAD fail with enhanced DAD when nonce length differs
2018-07-16 13:45:16 -07:00
netfilter.c
output_core.c
ping.c
proc: introduce proc_create_net{,_data}
2018-05-16 07:24:30 +02:00
proc.c
proc: introduce proc_create_net_single
2018-05-16 07:24:30 +02:00
protocol.c
raw.c
Revert changes to convert to ->poll_mask() and aio IOCB_CMD_POLL
2018-06-28 10:40:47 -07:00
reassembly.c
ipv6: frags: fix a lockdep false positive
2018-04-18 23:19:39 -04:00
route.c
net/ipv6: init ip6 anycast rt->dst.input as ip6_input
2018-09-15 09:46:42 +02:00
seg6_hmac.c
ipv6: sr: fix passing wrong flags to crypto_alloc_shash()
2018-07-02 20:36:37 +09:00
seg6_iptunnel.c
ipv6: sr: fix useless rol32 call on hash
2018-07-18 15:10:47 -07:00
seg6_local.c
ipv6: sr: Add seg6local action End.BPF
2018-05-24 11:57:36 +02:00
seg6.c
net: remove unnecessary genlmsg_cancel() calls
2018-05-29 09:53:38 -04:00
sit.c
ip6_tunnel: remove magic mtu value 0xFFF8
2018-06-01 13:56:30 -04:00
syncookies.c
net/ipv4: disable SMC TCP option with SYN Cookies
2018-03-25 20:53:54 -04:00
sysctl_net_ipv6.c
ipv6: sr: Compute flowlabel for outer IPv6 header of seg6 encap mode
2018-04-25 13:02:15 -04:00
tcp_ipv6.c
net/ipv6: Fix linklocal to global address with VRF
2018-07-21 19:31:46 -07:00
tcpv6_offload.c
tunnel6.c
udp_impl.h
udp_offload.c
udp: Add support for software checksum and GSO_PARTIAL with GSO offload
2018-05-08 22:30:06 -04:00
udp.c
udp: fix rx queue len reported by diag and proc interface
2018-06-08 19:55:15 -04:00
udplite.c
proc: introduce proc_create_net{,_data}
2018-05-16 07:24:30 +02:00
xfrm6_input.c
xfrm6_mode_beet.c
xfrm6_mode_ro.c
xfrm6_mode_transport.c
xfrm6_mode_tunnel.c
xfrm6_output.c
xfrm6_policy.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2018-06-03 09:31:58 -04:00
xfrm6_protocol.c
xfrm6_state.c
xfrm: remove VLA usage in __xfrm6_sort()
2018-04-26 07:51:48 +02:00
xfrm6_tunnel.c
xfrm: Fix warning in xfrm6_tunnel_net_exit.
2018-04-16 07:50:09 +02:00