path: root/security
diff options
mode: <>2008-10-23 04:27:19 +0000
committerDavid S. Miller <>2008-10-31 00:06:03 -0700
commita432226614c5616e3cfd211e0acffa0acfb4770c (patch)
tree2189d97e001e8ad9173ec40c27f6a28ab109db2f /security
parent3a8af722495469e9c550386b910c5b93c91cf107 (diff)
xfrm: do not leak ESRCH to user space
I noticed that, under certain conditions, ESRCH can be leaked from the xfrm layer to user space through sys_connect. In particular, this seems to happen reliably when the kernel fails to resolve a template either because the AF_KEY receive buffer being used by racoon is full or because the SA entry we are trying to use is in XFRM_STATE_EXPIRED state. However, since this could be a transient issue it could be argued that EAGAIN would be more appropriate. Besides this error code is not even documented in the man page for sys_connect (as of man-pages 3.07). Signed-off-by: Fernando Luis Vazquez Cao <> Signed-off-by: David S. Miller <>
Diffstat (limited to 'security')
0 files changed, 0 insertions, 0 deletions