]> bbs.cooldavid.org Git - net-next-2.6.git/commit
git://bbs.cooldavid.org / net-next-2.6.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 38000a9) | patch
xfrm: check bundle policy existance before dereferencing it
authorTimo Teräs <timo.teras@iki.fi>
Thu, 24 Jun 2010 21:35:00 +0000 (14:35 -0700)
committerDavid S. Miller <davem@davemloft.net>
Thu, 24 Jun 2010 21:35:00 +0000 (14:35 -0700)
commitb1312c89f0016f778cac4f1536f1434e132f8713
tree6cec9bc88430cf30f8409b8b607d2b6a6d2fd118tree | snapshot (tar.bz2 tar.gz zip)
parent38000a94a902e94ca8b5498f7871c6316de8957acommit | diff
xfrm: check bundle policy existance before dereferencing it

Fix the bundle validation code to not assume having a valid policy.
When we have multiple transformations for a xfrm policy, the bundle
instance will be a chain of bundles with only the first one having
the policy reference. When policy_genid is bumped it will expire the
first bundle in the chain which is equivalent of expiring the whole
chain.

Reported-bisected-and-tested-by: Justin P. Mattock <justinmattock@gmail.com>
Signed-off-by: Timo Teräs <timo.teras@iki.fi>
Signed-off-by: David S. Miller <davem@davemloft.net>
net/xfrm/xfrm_policy.c diff | blob | blame | history
Clone of davem's net-next-2.6 tree