git.baikalelectronics.ru Git - kernel.git/commit

author	Phil Sutter <phil@nwl.cc>
	Tue, 4 May 2021 15:54:06 +0000 (17:54 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Fri, 28 May 2021 19:11:33 +0000 (21:11 +0200)
commit	cca645bcb236611670aea8c6b8a4bb31547e1112
tree	5ec0f7906c7c4136590184e3d60721dec661856d	tree \| snapshot
parent	eda72a33bcff9428b27e48c0e4467334c6edae3c	commit \| diff

netfilter: nft_exthdr: Support SCTP chunks

Chunks are SCTP header extensions similar in implementation to IPv6
extension headers or TCP options. Reusing exthdr expression to find and
extract field values from them is therefore pretty straightforward.

For now, this supports extracting data from chunks at a fixed offset
(and length) only - chunks themselves are an extensible data structure;
in order to make all fields available, a nested extension search is
needed.

Signed-off-by: Phil Sutter <phil@nwl.cc>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

include/uapi/linux/netfilter/nf_tables.h		diff \| blob \| history
net/netfilter/nft_exthdr.c		diff \| blob \| history