projects / linux-2.6-microblaze.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4f25434) | patch
netfilter: Drop fragmented ndisc packets assembled in netfilter
authorGeorg Kohmann <geokohma@cisco.com>
Tue, 13 Oct 2020 12:23:12 +0000 (14:23 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 20 Oct 2020 11:54:53 +0000 (13:54 +0200)
commit68f9f9c2c3b6a7259f6a92bc26cdc7bd22e7a982
tree3a2457acc9eb577d7ffa6c11ab3cc1a173441acbtree | snapshot
parent4f25434bccc28cf8a07876ef5142a2869a674353commit | diff
netfilter: Drop fragmented ndisc packets assembled in netfilter

Fragmented ndisc packets assembled in netfilter not dropped as specified
in RFC 6980, section 5. This behaviour breaks TAHI IPv6 Core Conformance
Tests v6LC.2.1.22/23, V6LC.2.2.26/27 and V6LC.2.3.18.

Setting IP6SKB_FRAGMENTED flag during reassembly.

References: commit b800c3b966bc ("ipv6: drop fragmented ndisc packets by default (RFC 6980)")
Signed-off-by: Georg Kohmann <geokohma@cisco.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/ipv6/netfilter/nf_conntrack_reasm.c diff | blob | history
MicroBlaze GIT Repository