git.baikalelectronics.ru Git - kernel.git/commit

author	Florian Westphal <fw@strlen.de>
	Mon, 4 Apr 2011 15:00:54 +0000 (17:00 +0200)
committer	Patrick McHardy <kaber@trash.net>
	Mon, 4 Apr 2011 15:00:54 +0000 (17:00 +0200)
commit	b8ecd298c1d65595e0b5a7d7fcadb98b41c9b0e5
tree	ff0767f2dc382ee8a62e324e441b671382f0433c	tree \| snapshot
parent	30187cfc02d4e472bb1e1624fa2f47a746ac02f0	commit \| diff

netfilter: af_info: add 'strict' parameter to limit lookup to .oif

ipv6 fib lookup can set RT6_LOOKUP_F_IFACE flag to restrict search
to an interface, but this flag cannot be set via struct flowi.

Also, it cannot be set via ip6_route_output: this function uses the
passed sock struct to determine if this flag is required
(by testing for nonzero sk_bound_dev_if).

Work around this by passing in an artificial struct sk in case
'strict' argument is true.

This is required to replace the rt6_lookup call in xt_addrtype.c with
nf_afinfo->route().

Signed-off-by: Florian Westphal <fw@strlen.de>
Acked-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Patrick McHardy <kaber@trash.net>

include/linux/netfilter.h		diff \| blob \| history
net/ipv4/netfilter.c		diff \| blob \| history
net/ipv6/netfilter.c		diff \| blob \| history
net/netfilter/nf_conntrack_h323_main.c		diff \| blob \| history
net/netfilter/xt_TCPMSS.c		diff \| blob \| history