Mailing List Archive: iptables: Devel

[NETFILTER 00/04]: Netfilter fixes

Index | Next | Previous | View Threaded

kaber at trash

Nov 13, 2006, 11:03 PM

Post #1 of 6 (1102 views)
Permalink

[NETFILTER 00/04]: Netfilter fixes

Hi Dave,

following a few netfilter fixes for 2.6.19, fixing invalid use of skb_trim
in netfilter userspace queueing, conflicting optname values for ip6tables
revision support and another byteorder problem in nfnetlink_log.

Please apply, thanks.

include/linux/in6.h | 12 +++++++++++-
include/linux/netfilter/x_tables.h | 16 ----------------
include/linux/netfilter_arp/arp_tables.h | 25 +++++++++++++------------
include/linux/netfilter_ipv4/ip_tables.h | 27 +++++++++++++++------------
include/linux/netfilter_ipv6/ip6_tables.h | 27 +++++++++++++++------------
net/ipv4/netfilter/ip_queue.c | 7 ++++---
net/ipv6/netfilter/ip6_queue.c | 7 ++++---
net/ipv6/netfilter/ip6_tables.c | 2 +-
net/netfilter/nfnetlink_log.c | 2 +-
net/netfilter/nfnetlink_queue.c | 7 ++++---
10 files changed, 68 insertions(+), 64 deletions(-)

Patrick McHardy:
[NETFILTER]: nfnetlink_log: fix byteorder of NFULA_SEQ_GLOBAL
[NETFILTER]: Use pskb_trim in {ip,ip6,nfnetlink}_queue
[NETFILTER]: ip6_tables: use correct nexthdr value in ipv6_find_hdr()

Yasuyuki Kozakai:
[NETFILTER]: ip6_tables: fixed conflicted optname for getsockopt

davem at davemloft

Nov 14, 2006, 7:49 PM

Post #2 of 6 (1052 views)
Permalink

Re: [NETFILTER 00/04]: Netfilter fixes [In reply to]

From: Patrick McHardy <kaber [at] trash>
Date: Tue, 14 Nov 2006 08:03:26 +0100 (MET)

> following a few netfilter fixes for 2.6.19, fixing invalid use of skb_trim
> in netfilter userspace queueing, conflicting optname values for ip6tables
> revision support and another byteorder problem in nfnetlink_log.
>
> Please apply, thanks.

All applied, thanks a lot Patrick.

kaber at trash

Nov 27, 2006, 10:20 AM

Post #3 of 6 (1021 views)
Permalink

[NETFILTER 00/04]: Netfilter fixes [In reply to]

Hi Dave,

following are a few small netfilter fixes for 2.6.19, fixing multiple
refcount leaks and a nf_conntrack helper assignment race which can
lead to use-after-free.

Please apply, thanks.

net/ipv4/netfilter/ip_conntrack_core.c | 6 +++---
net/ipv4/netfilter/ip_conntrack_netlink.c | 1 +
net/netfilter/nf_conntrack_core.c | 19 +++++++++----------
net/netfilter/nf_conntrack_netlink.c | 9 +++++++++
4 files changed, 22 insertions(+), 13 deletions(-)

Patrick McHardy:
[NETFILTER]: ctnetlink: fix reference count leak

Yasuyuki Kozakai:
[NETFILTER]: nfctnetlink: assign helper to newly created conntrack
[NETFILTER]: nf_conntrack: fix the race on assign helper to new conntrack
[NETFILTER]: conntrack: fix refcount leak when finding expectation

davem at davemloft

Nov 27, 2006, 10:27 AM

Post #4 of 6 (1030 views)
Permalink

Re: [NETFILTER 00/04]: Netfilter fixes [In reply to]

From: Patrick McHardy <kaber [at] trash>
Date: Mon, 27 Nov 2006 19:20:53 +0100 (MET)

> following are a few small netfilter fixes for 2.6.19, fixing multiple
> refcount leaks and a nf_conntrack helper assignment race which can
> lead to use-after-free.
>
> Please apply, thanks.

Applied, thanks a lot Patrick.

davem at davemloft

Jan 9, 2007, 2:35 PM

Post #5 of 6 (975 views)
Permalink

Re: [NETFILTER 00/04]: Netfilter fixes [In reply to]

From: Patrick McHardy <kaber [at] trash>
Date: Tue, 9 Jan 2007 17:29:52 +0100 (MET)

> Hi Dave,
>
> following are a few more netfilter fixes for 2.6.20, fixing a
> nf_conntrack_ipv6 crash when dealing with fragments, hanging
> connections when loading the nf_nat module, an incorrect value
> for a TCP connection tracking flag and compilation of arp_tables
> userspace. I'll also pass on the relevant ones to -stable.
>
> Please apply, thanks.

It all looks good, applied, thanks Patrick.

davem at davemloft

Aug 14, 2007, 1:15 PM

Post #6 of 6 (904 views)
Permalink

Re: [NETFILTER 00/04]: Netfilter fixes [In reply to]

From: Patrick McHardy <kaber [at] trash>
Date: Tue, 14 Aug 2007 18:40:12 +0200 (MEST)

> Hi Dave,
>
> these patches fix an extraneous ";" in the new u32 match and three minor
> bugs in the SIP conntrack helper. Please apply, thanks.

All applied, thanks Patrick.

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads