[qca-nss-drv] Fixed source interface check
The connection match entry table that was originally in the eth_node
was moved to ipv4_rx, ipv6_rx and pppoe_rx data structures. This
caused a firewall issue since the source interface of the packet
was not being checked.
Introduced new exception types corresponding to the source interface check fix.
CRs-Fixed: 658176
Change-Id: If1ee0ad73a414575ddef2f259981bd92d93a1fbc
Signed-off-by: Murat Sezgin <msezgin@codeaurora.org>
diff --git a/nss_stats.c b/nss_stats.c
index b219a14..5f7e0c3 100644
--- a/nss_stats.c
+++ b/nss_stats.c
@@ -207,7 +207,8 @@
"IPV4_6RD_IP_FRAGMENT",
"IPV4_6RD_NEEDS_FRAGMENTATION",
"IPV4_DSCP_MARKING_MISMATCH",
- "IPV4_VLAN_MARKING_MISMATCH"
+ "IPV4_VLAN_MARKING_MISMATCH",
+ "IPV4_INTERFACE_MISMATCH"
};
/*
@@ -245,6 +246,7 @@
"IPV6_INGRESS_VID_MISMATCH",
"IPV6_DSCP_MARKING_MISMATCH",
"IPV6_VLAN_MARKING_MISMATCH",
+ "IPV6_INTERFACE_MISMATCH"
};
/*
@@ -255,7 +257,8 @@
"PPPOE_WRONG_VERSION_OR_TYPE",
"PPPOE_WRONG_CODE",
"PPPOE_HEADER_INCOMPLETE",
- "PPPOE_UNSUPPORTED_PPP_PROTOCOL"
+ "PPPOE_UNSUPPORTED_PPP_PROTOCOL",
+ "PPPOE_INTERFACE_MISMATCH"
};
/*
@@ -265,7 +268,6 @@
static ssize_t nss_stats_ipv4_read(struct file *fp, char __user *ubuf, size_t sz, loff_t *ppos)
{
int32_t i;
-
/*
* max output lines = #stats + start tag line + end tag line + three blank lines
*/