projects / platform / kernel / linux-rpi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0d9bd7e) | patch
netfilter: nft_payload: support for inner header matching / mangling
authorPablo Neira Ayuso <pablo@netfilter.org>
Thu, 28 Oct 2021 20:15:00 +0000 (22:15 +0200)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Tue, 12 Jul 2022 14:34:55 +0000 (16:34 +0200)
commit5445819e76a6fbcb9a848efd5569ea27e547f6ab
treefd7621e98c1c33a4ae9f5053989965d45e834392tree | snapshot
parent0d9bd7e6ac3af627df314b0800b778b7912576b7commit | diff
netfilter: nft_payload: support for inner header matching / mangling

[ Upstream commit c46b38dc8743535e686b911d253a844f0bd50ead ]

Allow to match and mangle on inner headers / payload data after the
transport header. There is a new field in the pktinfo structure that
stores the inner header offset which is calculated only when requested.
Only TCP and UDP supported at this stage.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
include/net/netfilter/nf_tables.h diff | blob | history
include/uapi/linux/netfilter/nf_tables.h diff | blob | history
net/netfilter/nft_payload.c diff | blob | history
Domain: System / Kernel;