]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 239a966) | patch
xfrm: Always zero high-order sequence number bits
authorHerbert Xu <herbert@gondor.apana.org.au>
Wed, 20 May 2015 16:38:12 +0000 (00:38 +0800)
committerSteffen Klassert <steffen.klassert@secunet.com>
Thu, 21 May 2015 04:56:23 +0000 (06:56 +0200)
commit70501b157e8597378b30829783255c6d2db5ab98
tree8f9bb35f6eb5634de61412f8a83a5b212078dfdetree | snapshot
parent239a966ca73b7ae9a9727d39c2727bb07c6c9988commit | diff
xfrm: Always zero high-order sequence number bits

As we're now always including the high bits of the sequence number
in the IV generation process we need to ensure that they don't
contain crap.

This patch ensures that the high sequence bits are always zeroed
so that we don't leak random data into the IV.

Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>
net/xfrm/xfrm_replay.c diff | blob | history
Linux Kernel Source Tree.