linux-next

mirror of https://github.com/edk2-porting/linux-next.git synced 2024-12-28 07:04:00 +08:00

History

Florian Westphal 7d35812c32 netfilter: x_tables: add and use xt_check_entry_offsets Currently arp/ip and ip6tables each implement a short helper to check that the target offset is large enough to hold one xt_entry_target struct and that t->u.target_size fits within the current rule. Unfortunately these checks are not sufficient. To avoid adding new tests to all of ip/ip6/arptables move the current checks into a helper, then extend this helper in followup patches. Signed-off-by: Florian Westphal <fw@strlen.de> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>		2016-04-14 00:30:35 +02:00
..
ipset	netfilter: ipset: fix race condition in ipset save, swap and delete	2016-03-28 17:57:45 +02:00
nf_conntrack_amanda.h
nf_conntrack_common.h	netfilter: Remove extern from function prototypes	2013-09-26 14:48:15 -07:00
nf_conntrack_dccp.h
nf_conntrack_ftp.h
nf_conntrack_h323_asn1.h
nf_conntrack_h323_types.h
nf_conntrack_h323.h	netfilter: Remove extern from function prototypes	2013-09-26 14:48:15 -07:00
nf_conntrack_irc.h
nf_conntrack_pptp.h
nf_conntrack_proto_gre.h	netfilter: nf_conntrack: flush net_gre->keymap_list only from gre helper	2014-04-08 10:56:12 +02:00
nf_conntrack_sane.h
nf_conntrack_sctp.h	netfilter: nf_ct_sctp: move ip_ct_sctp away from UAPI	2015-11-23 17:54:42 +01:00
nf_conntrack_sip.h	Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-next	2013-10-04 13:26:38 -04:00
nf_conntrack_snmp.h
nf_conntrack_tcp.h
nf_conntrack_tftp.h
nf_conntrack_zones_common.h	netfilter: nf_conntrack: make nf_ct_zone_dflt built-in	2015-09-02 16:32:56 -07:00
nfnetlink_acct.h	netfilter: nfacct: per network namespace support	2015-08-07 11:50:56 +02:00
nfnetlink.h	nfnetlink: remove nfnetlink_alloc_skb	2016-02-18 11:42:19 -05:00
x_tables.h	netfilter: x_tables: add and use xt_check_entry_offsets	2016-04-14 00:30:35 +02:00
xt_hashlimit.h
xt_physdev.h