systemd/test/fuzz/fuzz-network-parser at ab51fd9dbdc59f9a37acd8acaea3e9088d092bba - systemd - ProxGit

dasharo/systemd

mirror of https://github.com/Dasharo/systemd.git synced 2026-03-06 15:02:31 -08:00

Files

History

Topi Miettinen ab51fd9dbd network: firewall integration with NFT sets

New directives `NFTSet=`, `IPv4NFTSet=` and `IPv6NFTSet=` provide a method for
integrating configuration of dynamic networks into firewall rules with NFT
sets.

/etc/systemd/network/eth.network
```
[DHCPv4]
...
NFTSet=netdev:filter:eth_ipv4_address
```

```
table netdev filter {
        set eth_ipv4_address {
                type ipv4_addr
                flags interval
        }
        chain eth_ingress {
                type filter hook ingress device "eth0" priority filter; policy drop;
                ip saddr != @eth_ipv4_address drop
                accept
        }
}
```
```
sudo nft list set netdev filter eth_ipv4_address
table netdev filter {
        set eth_ipv4_address {
                type ipv4_addr
                flags interval
                elements = { 10.0.0.0/24 }
        }
}
```

2022-06-08 16:12:25 +00:00

..

21-vlan

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

23-active-slave

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

23-bond199

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

23-emit-lldp

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

23-primary-slave

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

23-test1-bond199

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

24-lldp

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

24-search-domain

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-address-link-section

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-address-section

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-address-section-misc

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-fibrule-port-range

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-ipv6-address-label-section

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-link-section-unmanaged

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-neighbor-section

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-route-section

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-route-tcp-window-settings

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-route-type

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

25-sysctl

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

26-bridge-slave-interface-1

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

26-bridge-slave-interface-2

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

27-xfrm

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

bridge99

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

configure-without-carrier

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-anonymize

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-critical-connection

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-ipv4-dhcp-settings

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-ipv4-no-ipv6

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-ipv4-only

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-ipv6-only

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-ipv6-rapid-commit

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-listen-port

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-route-metric

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-route-table

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-client-timezone-router

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-server

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-server-static-lease

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-server-timezone-router

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-server-veth-peer

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

dhcp-v4-server-veth-peer

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

directives

network: firewall integration with NFT sets

2022-06-08 16:12:25 +00:00

dns-trust-anchor-duplicate

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

github-10639

…

github-13938

test: add testcase for issue #13938

2019-11-05 10:49:07 +09:00

github-15885

tests: add a testcase for https://github.com/systemd/systemd/issues/15885

2020-05-22 13:35:00 +02:00

github-15951

network: fix memleaks

2020-05-29 14:49:40 +02:00

gretap

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

gretun

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

ip6gretap

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

ip6tnl

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

ipip

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

ipv6-prefix

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

ipv6-prefix-veth

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

ipvlan

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

macvlan

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

macvtap

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

oss-fuzz-11285

fuzz: add a testcase for oss-fuzz#11285

2018-11-08 12:31:02 +09:00

oss-fuzz-11302

fuzz: add testcases of recent issues

2018-11-09 11:45:43 +09:00

oss-fuzz-11314

fuzz: add testcases of recent issues

2018-11-09 11:45:43 +09:00

oss-fuzz-11345

fuzz: add testcase of oss-fuzz#11345

2018-11-11 12:03:52 +09:00

oss-fuzz-13059

tests: shorten the fuzz test case

2019-02-21 12:30:13 +01:00

oss-fuzz-13354

networkd: refuse more than 128 NTP servers

2019-02-27 14:52:33 +01:00

oss-fuzz-13433

networkd: fix memleak when the same NetDev is specified twice

2019-02-27 14:31:28 +01:00

oss-fuzz-13888

fuzz: add testcases for the bug in condition_free_list_type()

2019-03-24 00:35:39 +09:00

oss-fuzz-15678

tree-wide: avoid some loaded terms

2020-06-25 09:00:19 +02:00

oss-fuzz-20548

network: fix ABRT

2020-02-07 17:18:58 +09:00

oss-fuzz-23895

network: tc: fix n_prio bounds check

2020-07-06 15:52:17 +02:00

oss-fuzz-23950

fuzz: add test case that should already be resolved

2020-07-07 10:26:28 +02:00

routing-policy-rule

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

sit

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

test-static

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

vti

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

vti6

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00

vxlan

fuzz-network-parser: drop ".network" and shorten names

2022-05-04 12:57:48 +02:00