diff options
author | Mathias Krause <minipli@googlemail.com> | 2016-09-08 18:09:57 +0200 |
---|---|---|
committer | Steffen Klassert <steffen.klassert@secunet.com> | 2016-09-09 09:02:08 +0200 |
commit | 2f30ea5090cbc57ea573cdc66421264b3de3fb0a (patch) | |
tree | 7602a1be11bed9830f738558048fd87b3aca0e4f /lib/test_bpf.c | |
parent | 2c2c8e33e4aa6e46f19ef7bba8e559759a74a4db (diff) | |
download | linux-2f30ea5090cbc57ea573cdc66421264b3de3fb0a.tar.bz2 |
xfrm_user: propagate sec ctx allocation errors
When we fail to attach the security context in xfrm_state_construct()
we'll return 0 as error value which, in turn, will wrongly claim success
to userland when, in fact, we won't be adding / updating the XFRM state.
This is a regression introduced by commit fd21150a0fe1 ("[XFRM] netlink:
Inline attach_encap_tmpl(), attach_sec_ctx(), and attach_one_addr()").
Fix it by propagating the error returned by security_xfrm_state_alloc()
in this case.
Fixes: fd21150a0fe1 ("[XFRM] netlink: Inline attach_encap_tmpl()...")
Signed-off-by: Mathias Krause <minipli@googlemail.com>
Cc: Thomas Graf <tgraf@suug.ch>
Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>
Diffstat (limited to 'lib/test_bpf.c')
0 files changed, 0 insertions, 0 deletions