Mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/ https://git.shady.money/linux/atom?h=v2.6.19 2006-10-22T03:24:01Z 2006-10-22T03:24:01Z Eric Dumazet dada1@cosmosbay.com 2006-10-22T03:24:01Z urn:sha1:185b1aa122f87052d9154bb74990bc785372a750 As suggested by David, just kill off some unused fields in dnports to reduce sizef(struct flowi). If they come back, they should be moved to nl_u.dn_u in order not to enlarge again struct flowi [ Modified to really delete this stuff instead of using #if 0. -DaveM ] Signed-off-by: Eric Dumazet <dada1@cosmosbay.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2006-10-12T06:59:34Z James Morris jmorris@namei.org 2006-10-05T20:42:27Z urn:sha1:134b0fc544ba062498451611cb6f3e4454221b3d When a security module is loaded (in this case, SELinux), the security_xfrm_policy_lookup() hook can return an access denied permission (or other error). We were not handling that correctly, and in fact inverting the return logic and propagating a false "ok" back up to xfrm_lookup(), which then allowed packets to pass as if they were not associated with an xfrm policy. The way I was seeing the problem was when connecting via IPsec to a confined service on an SELinux box (vsftpd), which did not have the appropriate SELinux policy permissions to send packets via IPsec. The first SYNACK would be blocked, because of an uncached lookup via flow_cache_lookup(), which would fail to resolve an xfrm policy because the SELinux policy is checked at that point via the resolver. However, retransmitted SYNACKs would then find a cached flow entry when calling into flow_cache_lookup() with a null xfrm policy, which is interpreted by xfrm_lookup() as the packet not having any associated policy and similarly to the first case, allowing it to pass without transformation. The solution presented here is to first ensure that errno values are correctly propagated all the way back up through the various call chains from security_xfrm_policy_lookup(), and handled correctly. Then, flow_cache_lookup() is modified, so that if the policy resolver fails (typically a permission denied via the security module), the flow cache entry is killed rather than having a null policy assigned (which indicates that the packet can pass freely). This also forces any future lookups for the same flow to consult the security module (e.g. SELinux) for current security policy (rather than, say, caching the error on the flow cache entry). Signed-off-by: James Morris <jmorris@namei.org> 2006-09-29T01:02:43Z Al Viro viro@zeniv.linux.org.uk 2006-09-28T01:49:07Z urn:sha1:4324a174304d1d826582be5422a976e09d2b1e63 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Signed-off-by: David S. Miller <davem@davemloft.net> 2006-09-29T01:02:07Z Al Viro viro@zeniv.linux.org.uk 2006-09-28T01:33:22Z urn:sha1:cc939d37349bf82891bd1f4558284d7fafe7acb2 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Signed-off-by: David S. Miller <davem@davemloft.net> 2006-09-29T00:54:05Z Al Viro viro@zeniv.linux.org.uk 2006-09-27T04:26:42Z urn:sha1:f2c3fe24119ee4f8faca08699f0488f500014a27 Signed-off-by: Al Viro <viro@zeniv.linux.org.uk> Signed-off-by: David S. Miller <davem@davemloft.net> 2006-09-22T22:18:00Z YOSHIFUJI Hideaki yoshfuji@linux-ipv6.org 2006-08-21T10:22:01Z urn:sha1:75bff8f023e02b045a8f68f36fa7da98dca124b8 Based on patch by Jean Lorchat <lorchat@sfc.wide.ad.jp>. Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> 2006-09-22T22:07:00Z Masahide NAKAMURA nakam@linux-ipv6.org 2006-08-24T03:34:26Z urn:sha1:2b741653b6c824fe7520ee92b6795f11c5f24b24 Add Mobility header definition for Mobile IPv6. Based on MIPL2 kernel patch. This patch was also written by: Antti Tuominen <anttit@tcs.hut.fi> Signed-off-by: Masahide NAKAMURA <nakam@linux-ipv6.org> Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> Signed-off-by: David S. Miller <davem@davemloft.net> 2006-09-22T21:53:24Z Venkat Yekkirala vyekkirala@TrustedCS.com 2006-07-25T06:29:07Z urn:sha1:e0d1caa7b0d5f02e4f34aa09c695d04251310c6c This implements a seemless mechanism for xfrm policy selection and state matching based on the flow sid. This also includes the necessary SELinux enforcement pieces. Signed-off-by: Venkat Yekkirala <vyekkirala@TrustedCS.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2006-09-22T21:53:23Z Venkat Yekkirala vyekkirala@TrustedCS.com 2006-07-25T06:28:37Z urn:sha1:b6340fcd761acf9249b3acbc95c4dc555d9beb07 This adds security to flow key for labeling of flows as also to allow for making flow cache lookups based on the security label seemless. Signed-off-by: Venkat Yekkirala <vyekkirala@TrustedCS.com> Signed-off-by: David S. Miller <davem@davemloft.net> 2006-03-21T06:42:39Z Steven Whitehouse steve@chygwyn.com 2006-03-21T06:42:39Z urn:sha1:c4ea94ab3710eb2434abe2eab1a479c2dc01f8ac The typedef for dn_address has been removed in favour of using __le16 or __u16 directly as appropriate. All the DECnet header files are updated accordingly. The byte ordering of dn_eth2dn() and dn_dn2eth() are both changed since just about all their callers wanted network order rather than host order, so the conversion is now done in the functions themselves. Several missed endianess conversions have been picked up during the conversion process. The nh_gw field in struct dn_fib_info has been changed from a 32 bit field to 16 bits as it ought to be. One or two cases of using htons rather than dn_htons in the routing code have been found and fixed. There are still a few warnings to fix, but this patch deals with the important cases. Signed-off-by: Steven Whitehouse <steve@chygwyn.com> Signed-off-by: Patrick Caulfield <patrick@tykepenguin.com> Signed-off-by: David S. Miller <davem@davemloft.net>