linux-hardened/include/linux/netfilter
Jorge Boncompte c2a1910b06 [NETFILTER]: nf_nat_proto_gre: do not modify/corrupt GREv0 packets through NAT
While porting some changes of the 2.6.21-rc7 pptp/proto_gre conntrack
and nat modules to a 2.4.32 kernel I noticed that the gre_key function
returns a wrong pointer to the GRE key of a version 0 packet thus
corrupting the packet payload.

The intended behaviour for GREv0 packets is to act like
nf_conntrack_proto_generic/nf_nat_proto_unknown so I have ripped the
offending functions (not used anymore) and modified the
nf_nat_proto_gre modules to not touch version 0 (non PPTP) packets.

Signed-off-by: Jorge Boncompte <jorge@dti2.net>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
2007-05-03 03:34:42 -07:00
..
Kbuild
nf_conntrack_amanda.h
nf_conntrack_common.h
nf_conntrack_ftp.h
nf_conntrack_h323.h
nf_conntrack_h323_asn1.h
nf_conntrack_h323_types.h
nf_conntrack_irc.h
nf_conntrack_pptp.h
nf_conntrack_proto_gre.h [NETFILTER]: nf_nat_proto_gre: do not modify/corrupt GREv0 packets through NAT 2007-05-03 03:34:42 -07:00
nf_conntrack_sane.h
nf_conntrack_sctp.h
nf_conntrack_sip.h
nf_conntrack_tcp.h
nf_conntrack_tftp.h
nf_conntrack_tuple_common.h
nfnetlink.h [NETLINK]: Remove error pointer from netlink message handler 2007-04-25 22:27:30 -07:00
nfnetlink_conntrack.h
nfnetlink_log.h
nfnetlink_queue.h
x_tables.h
xt_CLASSIFY.h
xt_comment.h
xt_connbytes.h
xt_CONNMARK.h
xt_connmark.h
xt_CONNSECMARK.h
xt_conntrack.h
xt_dccp.h
xt_dscp.h
xt_DSCP.h
xt_esp.h
xt_hashlimit.h
xt_helper.h
xt_length.h
xt_limit.h
xt_mac.h
xt_MARK.h
xt_mark.h
xt_multiport.h
xt_NFLOG.h
xt_NFQUEUE.h
xt_physdev.h
xt_pkttype.h
xt_policy.h
xt_quota.h
xt_realm.h
xt_sctp.h
xt_SECMARK.h
xt_state.h
xt_statistic.h
xt_string.h
xt_TCPMSS.h
xt_tcpmss.h
xt_tcpudp.h