]> Git Repo - linux.git/commit
projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1e2bd51) | patch
xfrm: force a garbage collection after deleting a policy
authorPaul Moore <[email protected]>
Wed, 29 May 2013 07:36:25 +0000 (07:36 +0000)
committerDavid S. Miller <[email protected]>
Sat, 1 Jun 2013 00:30:07 +0000 (17:30 -0700)
commite4c1721642bbd42d8142f4811cde0588c28db51d
tree8f7750f6065dcb5d2bd727174fb9f4e3cd8fccf3tree | snapshot
parent1e2bd517c108816220f262d7954b697af03b5f9ccommit | diff
xfrm: force a garbage collection after deleting a policy

In some cases after deleting a policy from the SPD the policy would
remain in the dst/flow/route cache for an extended period of time
which caused problems for SELinux as its dynamic network access
controls key off of the number of XFRM policy and state entries.
This patch corrects this problem by forcing a XFRM garbage collection
whenever a policy is sucessfully removed.

Reported-by: Ondrej Moris <[email protected]>
Signed-off-by: Paul Moore <[email protected]>
Signed-off-by: David S. Miller <[email protected]>
include/net/xfrm.h diff | blob | blame | history
net/key/af_key.c diff | blob | blame | history
net/xfrm/xfrm_policy.c diff | blob | blame | history
net/xfrm/xfrm_user.c diff | blob | blame | history
Empty description
This page took 0.056494 seconds and 4 git commands to generate.