]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e7e0ad1) | patch
netfilter: nf_flow_table: ignore DF bit setting
authorFlorian Westphal <fw@strlen.de>
Tue, 21 May 2019 11:24:30 +0000 (13:24 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Wed, 22 May 2019 08:51:49 +0000 (10:51 +0200)
commit43498950df60eeeb2e35f36e0f5ccb48e0f724e0
tree767e4fd65dd100d9df194a9f5ef588a41b079737tree | snapshot
parente7e0ad1e5cae1ba4a081ccbf3ab1e0b966f6a683commit | diff
netfilter: nf_flow_table: ignore DF bit setting

Its irrelevant if the DF bit is set or not, we must pass packet to
stack in either case.

If the DF bit is set, we must pass it to stack so the appropriate
ICMP error can be generated.

If the DF is not set, we must pass it to stack for fragmentation.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_flow_table_ip.c diff | blob | history
Linux Kernel Source Tree.