aboutsummaryrefslogtreecommitdiffstats
path: root/net
diff options
context:
space:
mode:
authorHerbert Xu <herbert@gondor.apana.org.au>2007-12-13 12:30:59 -0500
committerDavid S. Miller <davem@davemloft.net>2008-01-28 17:57:54 -0500
commitaef21785995778f710a60b563e03bf53ba455a47 (patch)
tree5deeca8578e5b8d0198144b9dc2b281f8789a3df /net
parentcf86314cb7460423b0b7e611edad80a52dc90d10 (diff)
[IPSEC]: Fix zero return value in xfrm_lookup on error
Further testing shows that my ICMP relookup patch can cause xfrm_lookup to return zero on error which isn't very nice since it leads to the caller dying on null pointer dereference. The bug is due to not setting err to ENOENT just before we leave xfrm_lookup in case of no policy. This patch moves the err setting to where it should be. Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'net')
-rw-r--r--net/xfrm/xfrm_policy.c4
1 files changed, 2 insertions, 2 deletions
diff --git a/net/xfrm/xfrm_policy.c b/net/xfrm/xfrm_policy.c
index a83b5e1349ed..8023a3c0dad5 100644
--- a/net/xfrm/xfrm_policy.c
+++ b/net/xfrm/xfrm_policy.c
@@ -1469,8 +1469,6 @@ restart:
1469 goto dropdst; 1469 goto dropdst;
1470 } 1470 }
1471 1471
1472 err = -ENOENT;
1473
1474 if (!policy) { 1472 if (!policy) {
1475 /* To accelerate a bit... */ 1473 /* To accelerate a bit... */
1476 if ((dst_orig->flags & DST_NOXFRM) || 1474 if ((dst_orig->flags & DST_NOXFRM) ||
@@ -1492,6 +1490,7 @@ restart:
1492 npols ++; 1490 npols ++;
1493 xfrm_nr += pols[0]->xfrm_nr; 1491 xfrm_nr += pols[0]->xfrm_nr;
1494 1492
1493 err = -ENOENT;
1495 if ((flags & XFRM_LOOKUP_ICMP) && !(policy->flags & XFRM_POLICY_ICMP)) 1494 if ((flags & XFRM_LOOKUP_ICMP) && !(policy->flags & XFRM_POLICY_ICMP))
1496 goto error; 1495 goto error;
1497 1496
@@ -1657,6 +1656,7 @@ dropdst:
1657 return err; 1656 return err;
1658 1657
1659nopol: 1658nopol:
1659 err = -ENOENT;
1660 if (flags & XFRM_LOOKUP_ICMP) 1660 if (flags & XFRM_LOOKUP_ICMP)
1661 goto dropdst; 1661 goto dropdst;
1662 return 0; 1662 return 0;