git.baikalelectronics.ru Git - kernel.git/commit

author	Phil Sutter <phil@nwl.cc>
	Thu, 16 Feb 2023 16:05:36 +0000 (17:05 +0100)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sat, 11 Mar 2023 12:55:24 +0000 (13:55 +0100)
commit	dc1c477ba82e15b790314e9570f56d3fd411877d
tree	f3fe2390db7604a4c3a21a95c1b1fd51eb7969a8	tree \| snapshot
parent	e422fe3568a9f1093c8ea7e68c1b20603e4c5bd2	commit \| diff

netfilter: ip6t_rpfilter: Fix regression with VRF interfaces

[ Upstream commit 4ecc003dbbdaef89f058747af17e46dab21b5f77 ]

When calling ip6_route_lookup() for the packet arriving on the VRF
interface, the result is always the real (slave) interface. Expect this
when validating the result.

Fixes: f4ca96aadd077 ("netfilter: rpfilter/fib: Populate flowic_l3mdev field")
Signed-off-by: Phil Sutter <phil@nwl.cc>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>

net/ipv6/netfilter/ip6t_rpfilter.c		diff \| blob \| history
tools/testing/selftests/netfilter/rpath.sh		diff \| blob \| history