linux

mirror of https://github.com/torvalds/linux.git synced 2026-06-08 06:25:52 +02:00

History

Xin Long 60efd2f86a ip_vti: receive ipip packet by calling ip_tunnel_rcv commit `976eba8ab5` upstream. In Commit `dd9ee34440` ("vti4: Fix a ipip packet processing bug in 'IPCOMP' virtual tunnel"), it tries to receive IPIP packets in vti by calling xfrm_input(). This case happens when a small packet or frag sent by peer is too small to get compressed. However, xfrm_input() will still get to the IPCOMP path where skb sec_path is set, but never dropped while it should have been done in vti_ipcomp4_protocol.cb_handler(vti_rcv_cb), as it's not an ipcomp4 packet. This will cause that the packet can never pass xfrm4_policy_check() in the upper protocol rcv functions. So this patch is to call ip_tunnel_rcv() to process IPIP packets instead. Fixes: `dd9ee34440` ("vti4: Fix a ipip packet processing bug in 'IPCOMP' virtual tunnel") Reported-by: Xiumei Mu <xmu@redhat.com> Signed-off-by: Xin Long <lucien.xin@gmail.com> Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>		2020-06-03 08:19:46 +02:00
..
6lowpan
9p
802
8021q
appletalk
atm
ax25	ax25: fix setsockopt(SO_BINDTODEVICE)	2020-06-03 08:19:02 +02:00
batman-adv	batman-adv: Fix refcnt leak in batadv_v_ogm_process	2020-05-14 07:57:22 +02:00
bluetooth	Bluetooth: RFCOMM: fix ODEBUG bug in rfcomm_dev_ioctl	2020-04-13 10:45:14 +02:00
bpf
bpfilter
bridge
caif
can
ceph	libceph: ignore pool overlay and cache logic on redirects	2020-06-03 08:19:39 +02:00
core	__netif_receive_skb_core: pass skb by reference	2020-06-03 08:19:05 +02:00
dcb
dccp	net: ipv6: add net argument to ip6_dst_lookup_flow	2020-04-29 16:31:16 +02:00
decnet
dns_resolver	KEYS: Don't write out to userspace while holding key semaphore	2020-04-23 10:30:24 +02:00
dsa	net: dsa: mt7530: fix roaming from DSA user ports	2020-06-03 08:19:03 +02:00
ethernet
hsr	hsr: check protocol version in hsr_newlink()	2020-04-21 09:03:03 +02:00
ieee802154
ife
ipv4	ip_vti: receive ipip packet by calling ip_tunnel_rcv	2020-06-03 08:19:46 +02:00
ipv6	Revert "ipv6: add mtu lock check in __ip6_rt_update_pmtu"	2020-05-20 08:18:36 +02:00
iucv
kcm
key
l2tp	net: ipv6: add net argument to ip6_dst_lookup_flow	2020-04-29 16:31:16 +02:00
l3mdev
lapb
llc
mac80211	mac80211: mesh: fix discovery timer re-arming issue / crash	2020-06-03 08:19:43 +02:00
mac802154
mpls	net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup	2020-04-29 16:31:17 +02:00
ncsi
netfilter	netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start()	2020-05-20 08:18:44 +02:00
netlabel	netlabel: cope with NULL catmap	2020-05-20 08:18:35 +02:00
netlink
netrom	net: netrom: Fix potential nr_neigh refcnt leak in nr_add_node	2020-04-29 16:31:21 +02:00
nfc	nfc: add missing attribute validation for vendor subcommand	2020-03-18 07:14:17 +01:00
nsh
openvswitch
packet	net/packet: tpacket_rcv: avoid a producer race condition	2020-04-02 15:28:11 +02:00
phonet
psample
qrtr	net: qrtr: Fix passing invalid reference to qrtr_local_enqueue()	2020-06-03 08:19:12 +02:00
rds
rfkill
rose
rxrpc	rxrpc: Fix ack discard	2020-05-27 17:37:46 +02:00
sched	sch_sfq: validate silly quantum values	2020-05-14 07:57:18 +02:00
sctp	sctp: Start shutdown on association restart if in SHUTDOWN-SENT state and socket is closed	2020-06-03 08:19:23 +02:00
smc	net/smc: cancel event worker during device removal	2020-03-18 07:14:25 +01:00
strparser
sunrpc	svcrdma: Fix leak of svc_rdma_recv_ctxt objects	2020-05-02 17:25:52 +02:00
switchdev
tipc	tipc: fix partial topology connection closure	2020-05-14 07:57:18 +02:00
tls
unix
vmw_vsock
wimax
wireless	nl80211: fix NL80211_ATTR_CHANNEL_WIDTH attribute type	2020-04-02 15:28:17 +02:00
x25	net/x25: Fix x25_neigh refcnt leak when receiving frame	2020-04-29 16:31:21 +02:00
xdp	xsk: Add missing check on user supplied headroom size	2020-04-23 10:30:15 +02:00
xfrm	xfrm: fix a NULL-ptr deref in xfrm_local_error	2020-06-03 08:19:45 +02:00
compat.c
Kconfig
Makefile
socket.c
sysctl_net.c