]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c3b39c8) | patch
netfilter: use fwmark_reflect in nf_send_reset
authorPau Espin Pedrol <pau.espin@tessares.net>
Fri, 6 Jan 2017 19:33:27 +0000 (20:33 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 9 Jan 2017 17:01:03 +0000 (18:01 +0100)
commitb691c6002f5a9515d56a5aa726213c82fd704990
tree964f49666b06bf3c1cb918aaeb70d5bd6affa74dtree | snapshot
parentc3b39c8a79ee326d211c87279b2f1cd509b988decommit | diff
netfilter: use fwmark_reflect in nf_send_reset

Otherwise, RST packets generated by ipt_REJECT always have mark 0 when
the routing is checked later in the same code path.

Fixes: b2d88dea8bd2 ("net: add a sysctl to reflect the fwmark on replies")
Cc: Lorenzo Colitti <lorenzo@google.com>
Signed-off-by: Pau Espin Pedrol <pau.espin@tessares.net>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/ipv4/netfilter/nf_reject_ipv4.c diff | blob | history
net/ipv6/netfilter/nf_reject_ipv6.c diff | blob | history
Linux Kernel Source Tree.