[PATCH 2.6.26-rc3] xfrm: Installing NULL encryption IPSec SAs fails

From: Martin Willi
Date: Wed May 21 2008 - 13:24:17 EST

Next message: J. Bruce Fields: "2.6.24 not recognizing 2G MMC card?"
Previous message: Mingming: "Re: [PATCH-v2] JBD: Fix race between free buffer and committrasanction"
Next in thread: David Miller: "Re: [PATCH 2.6.26-rc3] xfrm: Installing NULL encryption IPSec SAsfails"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

ïInstalling NULL encryption IPSec SAs works using the .compat name
"cipher_null", but fails with the .name "ecp(cipher_null)" due the
missing check in key length verification.
ï
Signed-off-by: Martin Willi <martin@xxxxxxxxxxxxxx>

--- a/net/xfrm/xfrm_user.c 2008-05-21 11:34:56.000000000 -0500
+++ b/net/xfrm/xfrm_user.c 2008-05-21 11:20:08.000000000 -0500
@@ -57,6 +57,7 @@

case XFRMA_ALG_CRYPT:
if (!algp->alg_key_len &&
+ strcmp(algp->alg_name, "ecb(cipher_null)") != 0 &&
strcmp(algp->alg_name, "cipher_null") != 0)
return -EINVAL;
break;

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: J. Bruce Fields: "2.6.24 not recognizing 2G MMC card?"
Previous message: Mingming: "Re: [PATCH-v2] JBD: Fix race between free buffer and committrasanction"
Next in thread: David Miller: "Re: [PATCH 2.6.26-rc3] xfrm: Installing NULL encryption IPSec SAsfails"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]