]> git.proxmox.com Git - mirror_ubuntu-artful-kernel.git/commit
projects / mirror_ubuntu-artful-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6d7258c) | patch
xfrm: Always zero high-order sequence number bits
authorHerbert Xu <herbert@gondor.apana.org.au>
Wed, 20 May 2015 16:38:12 +0000 (00:38 +0800)
committerSteffen Klassert <steffen.klassert@secunet.com>
Thu, 21 May 2015 04:56:23 +0000 (06:56 +0200)
commit407d34ef294727bdc200934c38d9a8241f4a5547
tree8f9bb35f6eb5634de61412f8a83a5b212078dfdetree
parent6d7258ca937027ae86d6d5938d7ae10b6d68f4a4commit | diff
xfrm: Always zero high-order sequence number bits

As we're now always including the high bits of the sequence number
in the IV generation process we need to ensure that they don't
contain crap.

This patch ensures that the high sequence bits are always zeroed
so that we don't leak random data into the IV.

Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>
net/xfrm/xfrm_replay.c diff | blob | blame | history
Ubuntu Artful kernel mirror