1
linux/net/bridge
Patrick McHardy 42cf93cd46 [NETFILTER]: Fix bridge netfilter related in xfrm_lookup
The bridge-netfilter code attaches a fake dst_entry with dst->ops == NULL
to purely bridged packets. When these packets are SNATed and a policy
lookup is done, xfrm_lookup crashes because it tries to dereference
dst->ops.

Change xfrm_lookup not to dereference dst->ops before checking for the
DST_NOXFRM flag and set this flag in the fake dst_entry.

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
2006-02-23 16:10:51 -08:00
..
netfilter [NETFILTER]: Fix possible overflow in netfilters do_replace() 2006-02-04 23:51:25 -08:00
br_device.c [BRIDGE]: limited ethtool support 2006-01-03 13:11:03 -08:00
br_fdb.c [BRIDGE]: Use ether_compare 2005-10-31 16:34:10 -02:00
br_forward.c [BRIDGE]: TSO fix in br_dev_queue_push_xmit 2005-09-22 23:35:34 -07:00
br_if.c [BRIDGE]: fix error handling for add interface to bridge 2006-02-09 17:10:12 -08:00
br_input.c [BRIDGE]: fix for RCU and deadlock on device removal 2006-02-09 17:08:52 -08:00
br_ioctl.c [PATCH] capable/capability.h (net/) 2006-01-11 18:42:14 -08:00
br_netfilter.c [NETFILTER]: Fix bridge netfilter related in xfrm_lookup 2006-02-23 16:10:51 -08:00
br_notify.c [BRIDGE]: handle speed detection after carrier changes 2006-01-03 13:11:01 -08:00
br_private_stp.h Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
br_private.h [BRIDGE]: fix error handling for add interface to bridge 2006-02-09 17:10:12 -08:00
br_stp_bpdu.c [BRIDGE]: fix for RCU and deadlock on device removal 2006-02-09 17:08:52 -08:00
br_stp_if.c [BRIDGE]: Fix deadlock in br_stp_disable_bridge 2006-02-15 01:47:48 -08:00
br_stp_timer.c Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
br_stp.c Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
br_sysfs_br.c [PATCH] capable/capability.h (net/) 2006-01-11 18:42:14 -08:00
br_sysfs_if.c [BRIDGE]: fix error handling for add interface to bridge 2006-02-09 17:10:12 -08:00
br.c [BRIDGE]: add version number 2006-01-03 13:11:04 -08:00
Kconfig [NET]: move config options out to individual protocols 2005-07-11 21:13:56 -07:00
Makefile Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00