diff options
| author | Eli Cooper <elicooper@gmx.com> | 2019-01-21 18:45:27 +0800 |
|---|---|---|
| committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2019-02-05 14:10:33 +0100 |
| commit | 15df03c661cb362366ecfc3a21820cb934f3e4ca (patch) | |
| tree | a79acd81c09b6511c607b1696842c73dc2a70da5 /net/ax25/ax25_ip.c | |
| parent | f6ac8585897684374a19863fff21186a05805286 (diff) | |
| download | linux-15df03c661cb362366ecfc3a21820cb934f3e4ca.tar.bz2 | |
netfilter: ipv6: Don't preserve original oif for loopback address
Commit 508b09046c0f ("netfilter: ipv6: Preserve link scope traffic
original oif") made ip6_route_me_harder() keep the original oif for
link-local and multicast packets. However, it also affected packets
for the loopback address because it used rt6_need_strict().
REDIRECT rules in the OUTPUT chain rewrite the destination to loopback
address; thus its oif should not be preserved. This commit fixes the bug
that redirected local packets are being dropped. Actually the packet was
not exactly dropped; Instead it was sent out to the original oif rather
than lo. When a packet with daddr ::1 is sent to the router, it is
effectively dropped.
Fixes: 508b09046c0f ("netfilter: ipv6: Preserve link scope traffic original oif")
Signed-off-by: Eli Cooper <elicooper@gmx.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'net/ax25/ax25_ip.c')
0 files changed, 0 insertions, 0 deletions