]> git.proxmox.com Git - mirror_ubuntu-eoan-kernel.git/commit
netfilter: xt_NFLOG: fix unexpected truncated packet
authorLiping Zhang <liping.zhang@spreadtrum.com>
Tue, 11 Oct 2016 13:03:45 +0000 (21:03 +0800)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 17 Oct 2016 15:38:19 +0000 (17:38 +0200)
commit6d19375b58763fefc2f215fb45117d3353ced888
treed95306abba2a48574b5db719455f92f79d18b2f1
parent4f76de5f237615643d2243582cee331815312ad0
netfilter: xt_NFLOG: fix unexpected truncated packet

Justin and Chris spotted that iptables NFLOG target was broken when they
upgraded the kernel to 4.8: "ulogd-2.0.5- IPs are no longer logged" or
"results in segfaults in ulogd-2.0.5".

Because "struct nf_loginfo li;" is a local variable, and flags will be
filled with garbage value, not inited to zero. So if it contains 0x1,
packets will not be logged to the userspace anymore.

Fixes: 7643507fe8b5 ("netfilter: xt_NFLOG: nflog-range does not truncate packets")
Reported-by: Justin Piszcz <jpiszcz@lucidpixels.com>
Reported-by: Chris Caputo <ccaputo@alt.net>
Tested-by: Chris Caputo <ccaputo@alt.net>
Signed-off-by: Liping Zhang <liping.zhang@spreadtrum.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/xt_NFLOG.c