diff options
author | Alexey Dobriyan <adobriyan@gmail.com> | 2008-11-25 20:16:11 -0500 |
---|---|---|
committer | David S. Miller <davem@davemloft.net> | 2008-11-25 20:16:11 -0500 |
commit | 9d4139c76905833afcb77fe8ccc17f302a0eb9ab (patch) | |
tree | 40cb6b05eeffd0478f6d767effaa5d346aa3df82 /include/net/netns | |
parent | 673c09be457bb23aa0eaaa79804cbb342210d195 (diff) |
netns xfrm: per-netns xfrm_state_all list
This is done to get
a) simple "something leaked" check
b) cover possible DoSes when other netns puts many, many xfrm_states
onto a list.
c) not miss "alien xfrm_state" check in some of list iterators in future.
Signed-off-by: Alexey Dobriyan <adobriyan@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'include/net/netns')
-rw-r--r-- | include/net/netns/xfrm.h | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/include/net/netns/xfrm.h b/include/net/netns/xfrm.h index 1cb0024a3b47..6ae234a16517 100644 --- a/include/net/netns/xfrm.h +++ b/include/net/netns/xfrm.h | |||
@@ -1,7 +1,10 @@ | |||
1 | #ifndef __NETNS_XFRM_H | 1 | #ifndef __NETNS_XFRM_H |
2 | #define __NETNS_XFRM_H | 2 | #define __NETNS_XFRM_H |
3 | 3 | ||
4 | #include <linux/list.h> | ||
5 | |||
4 | struct netns_xfrm { | 6 | struct netns_xfrm { |
7 | struct list_head state_all; | ||
5 | }; | 8 | }; |
6 | 9 | ||
7 | #endif | 10 | #endif |