| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20231028084328.3119236-1-steffen.klassert@secunet.com>
Date: Sat, 28 Oct 2023 10:43:18 +0200
From: Steffen Klassert <steffen.klassert@...unet.com>
To: David Miller <davem@...emloft.net>, Jakub Kicinski <kuba@...nel.org>
CC: Herbert Xu <herbert@...dor.apana.org.au>, Steffen Klassert
<steffen.klassert@...unet.com>, <netdev@...r.kernel.org>
Subject: [PATCH 0/10] pull request (net-next): ipsec-next 2023-10-28
1) Remove unused function declarations of xfrm4_extract_input and
xfrm6_extract_input. From Yue Haibing.
2) Annotate struct xfrm_sec_ctx with __counted_by.
From Kees Cook.
3) Support GRO decapsulation for ESP in UDP encapsulation.
From Antony Antony et all.
4) Replace the xfrm session decode with flow dissector.
From Florian Westphal.
5) Fix a use after free in __xfrm6_udp_encap_rcv.
6) Fix the layer 4 flowi decoding.
From Florian Westphal.
Please pull or let me know if there are problems.
Thanks!
The following changes since commit 3a69ab875233734bc434402379100272cd70bde2:
Merge branch 'ionic-better-tx-sg=handling' (2023-09-20 10:52:31 +0100)
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/klassert/ipsec-next.git tags/ipsec-next-2023-10-28
for you to fetch changes up to eefed7662ff223f70ba8b1af07f1a096a5ece588:
xfrm: policy: fix layer 4 flowi decoding (2023-10-27 10:12:09 +0200)
----------------------------------------------------------------
ipsec-next-2023-10-28
----------------------------------------------------------------
Florian Westphal (4):
xfrm: pass struct net to xfrm_decode_session wrappers
xfrm: move mark and oif flowi decode into common code
xfrm: policy: replace session decode with flow dissector
xfrm: policy: fix layer 4 flowi decoding
Kees Cook (1):
xfrm: Annotate struct xfrm_sec_ctx with __counted_by
Steffen Klassert (6):
xfrm: Use the XFRM_GRO to indicate a GRO call on input
xfrm: Support GRO for IPv4 ESP in UDP encapsulation
xfrm: Support GRO for IPv6 ESP in UDP encapsulation
Merge branch 'xfrm: Support GRO decapsulation for ESP in UDP encapsulation'
Merge branch 'xfrm: policy: replace session decode with flow dissector'
xfrm Fix use after free in __xfrm6_udp_encap_rcv.
Yue Haibing (1):
xfrm: Remove unused function declarations
include/net/gro.h | 2 +-
include/net/ipv6_stubs.h | 3 +
include/net/xfrm.h | 18 +--
include/uapi/linux/xfrm.h | 3 +-
net/ipv4/esp4_offload.c | 6 +-
net/ipv4/icmp.c | 2 +-
net/ipv4/ip_vti.c | 4 +-
net/ipv4/netfilter.c | 2 +-
net/ipv4/udp.c | 16 +++
net/ipv4/xfrm4_input.c | 95 ++++++++++---
net/ipv6/af_inet6.c | 1 +
net/ipv6/esp6_offload.c | 10 +-
net/ipv6/icmp.c | 2 +-
net/ipv6/ip6_vti.c | 4 +-
net/ipv6/netfilter.c | 2 +-
net/ipv6/xfrm6_input.c | 103 +++++++++++---
net/netfilter/nf_nat_proto.c | 2 +-
net/xfrm/xfrm_input.c | 6 +-
net/xfrm/xfrm_interface_core.c | 4 +-
net/xfrm/xfrm_policy.c | 299 +++++++++++++++++------------------------
20 files changed, 343 insertions(+), 241 deletions(-)
Powered by blists - more mailing lists