xfrm_user: propagate sec ctx allocation errors - linux-dev - Linux kernel development work

diff options

author	Mathias Krause <minipli@googlemail.com>	2016-09-08 18:09:57 +0200
committer	Steffen Klassert <steffen.klassert@secunet.com>	2016-09-09 09:02:08 +0200
commit	2f30ea5090cbc57ea573cdc66421264b3de3fb0a (patch)
tree	7602a1be11bed9830f738558048fd87b3aca0e4f /net/ipv6/ip6_vti.c
parent	Merge branch 'nfp-fixes' (diff)
download	linux-dev-2f30ea5090cbc57ea573cdc66421264b3de3fb0a.tar.xz linux-dev-2f30ea5090cbc57ea573cdc66421264b3de3fb0a.zip

xfrm_user: propagate sec ctx allocation errors

When we fail to attach the security context in xfrm_state_construct() we'll return 0 as error value which, in turn, will wrongly claim success to userland when, in fact, we won't be adding / updating the XFRM state. This is a regression introduced by commit fd21150a0fe1 ("[XFRM] netlink: Inline attach_encap_tmpl(), attach_sec_ctx(), and attach_one_addr()"). Fix it by propagating the error returned by security_xfrm_state_alloc() in this case. Fixes: fd21150a0fe1 ("[XFRM] netlink: Inline attach_encap_tmpl()...") Signed-off-by: Mathias Krause <minipli@googlemail.com> Cc: Thomas Graf <tgraf@suug.ch> Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>

Diffstat (limited to 'net/ipv6/ip6_vti.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: