Home
last modified time | relevance | path

Searched hist:"47 a6959fa331fe892a4fc3b48ca08e92045c6bda" (Results 1 – 14 of 14) sorted by relevance

/linux/net/bridge/netfilter/
H A Debt_mark_m.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
H A Debt_mark.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
H A Debt_limit.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
H A Debtables.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
/linux/net/netfilter/
H A Dxt_limit.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
H A Dx_tables.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
H A DKconfigdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
/linux/include/linux/netfilter_arp/
H A Darp_tables.hdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
/linux/include/linux/netfilter_ipv4/
H A Dip_tables.hdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
/linux/include/linux/netfilter_ipv6/
H A Dip6_tables.hdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
/linux/include/linux/netfilter/
H A Dx_tables.hdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
/linux/net/ipv4/netfilter/
H A Darp_tables.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
H A Dip_tables.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
/linux/net/ipv6/netfilter/
H A Dip6_tables.cdiff 47a6959fa331fe892a4fc3b48ca08e92045c6bda Mon Apr 26 12:14:40 CEST 2021 Florian Westphal <fw@strlen.de> netfilter: allow to turn off xtables compat layer

The compat layer needs to parse untrusted input (the ruleset)
to translate it to a 64bit compatible format.

We had a number of bugs in this department in the past, so allow users
to turn this feature off.

Add CONFIG_NETFILTER_XTABLES_COMPAT kconfig knob and make it default to y
to keep existing behaviour.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>