]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3c6a30f) | patch
netfilter: nft_payload: support for inner header matching / mangling
authorPablo Neira Ayuso <pablo@netfilter.org>
Thu, 28 Oct 2021 20:15:00 +0000 (22:15 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 1 Nov 2021 08:31:03 +0000 (09:31 +0100)
commitdb1534a4f3eeb9f70c52861eef76658a91ab65f6
tree3ea59205264ba559d399fd8047e9dbe196743fb2tree | snapshot
parent3c6a30fc5d9e6d3a569f362e1533b29ee6b2ce75commit | diff
netfilter: nft_payload: support for inner header matching / mangling

Allow to match and mangle on inner headers / payload data after the
transport header. There is a new field in the pktinfo structure that
stores the inner header offset which is calculated only when requested.
Only TCP and UDP supported at this stage.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/net/netfilter/nf_tables.h diff | blob | history
include/uapi/linux/netfilter/nf_tables.h diff | blob | history
net/netfilter/nft_payload.c diff | blob | history
Linux Kernel Source Tree.