Skip to content

GitLab

Switch branch/tag
History Find file
Clone
netfilter: nf_tables: add SECMARK support
Christian Göttsche authored 

Add the ability to set the security context of packets within the nf_tables framework.
Add a nft_object for holding security contexts in the kernel and manipulating packets on the wire.

Convert the security context strings at rule addition time to security identifiers.
This is the same behavior like in xt_SECMARK and offers better performance than computing it per packet.

Set the maximum security context length to 256.
Signed-off-by: default avatarChristian Göttsche <cgzones@googlemail.com>
Acked-by: default avatarFlorian Westphal <fw@strlen.de>
Signed-off-by: default avatarPablo Neira Ayuso <pablo@netfilter.org>
fb961945
Name Last commit Last update
Documentation dt-bindings: net: dsa: Add lantiq, xrx200-gswip DT bindings
LICENSES LICENSES: Add Linux-OpenIB license text
arch net: dsa: Add Lantiq / Intel DSA driver for vrx200
block block: bfq: swap puts in bfqg_and_blkg_put
certs export.h: remove VMLINUX_SYMBOL() and VMLINUX_SYMBOL_STR()
crypto Merge tag 'dmaengine-4.19-rc1' of git://git.infradead.org/users/vkoul/slave-dma
drivers net: phy: et011c: Remove incorrect PHY_POLL flags
firmware kbuild: remove all dummy assignments to obj-
fs afs: Fix cell specification to permit an empty address list
include netfilter: nf_tables: add SECMARK support
init Merge tag 'kbuild-v4.19-2' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild
ipc ipc/shm: properly return EIDRM in shm_lock()
kernel Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
lib lib/Kconfig.debug: fix three typos in help text
mm Merge tag 'for-linus-20180906' of git://git.kernel.dk/linux-block
net netfilter: nf_tables: add SECMARK support
samples samples/bpf: xdpsock, minor fixes
scripts Merge tag 'kbuild-fixes-v4.19' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild
security Merge tag 'apparmor-pr-2018-09-06' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor
sound ALSA: hda: Fix several mismatch for register mask and value
tools Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
usr initramfs: move gen_initramfs_list.sh from scripts/ to usr/
virt KVM: Remove obsolete kvm_unmap_hva notifier backend
.clang-format clang-format: Set IndentWrappedFunctionNames false
.cocciconfig scripts: add Linux .cocciconfig for coccinelle
.get_maintainer.ignore
.gitattributes
.gitignore
.mailmap
COPYING
CREDITS
Kbuild
Kconfig
MAINTAINERS
Makefile
README
README
Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.
See Documentation/00-INDEX for a list of what is contained in each file.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7