projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b5bdc6f) | patch
netfilter: nft_payload: support for inner header matching / mangling
authorPablo Neira Ayuso <pablo@netfilter.org>
Thu, 28 Oct 2021 20:15:00 +0000 (22:15 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 1 Nov 2021 08:31:03 +0000 (09:31 +0100)
commitc46b38dc8743535e686b911d253a844f0bd50ead
tree3ea59205264ba559d399fd8047e9dbe196743fb2tree | snapshot
parentb5bdc6f9c24db9a0adf8bd00c0e935b184654f00commit | diff
netfilter: nft_payload: support for inner header matching / mangling

Allow to match and mangle on inner headers / payload data after the
transport header. There is a new field in the pktinfo structure that
stores the inner header offset which is calculated only when requested.
Only TCP and UDP supported at this stage.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/net/netfilter/nf_tables.h diff | blob | history
include/uapi/linux/netfilter/nf_tables.h diff | blob | history
net/netfilter/nft_payload.c diff | blob | history
ep93xx device tree rework repo: git://git.maquefel.me/linux.git