KumiSystems/openwrtv3
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
openwrtv3/target/linux/generic/patches-3.10/616-net_optimize_xfrm_calls.patch
Felix Fietkau 0cebaafa6e kernel: add missing check for skb->dev on netfilter xfrm optimization patch 
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 43567
2014-12-08 12:21:17 +00:00

12 lines
331 B
Diff
Raw Blame History

--- a/net/netfilter/nf_nat_core.c
+++ b/net/netfilter/nf_nat_core.c
@@ -89,6 +89,9 @@ int nf_xfrm_me_harder(struct sk_buff *sk
struct dst_entry *dst;
int err;
+ if (skb->dev && !dev_net(skb->dev)->xfrm.policy_count[XFRM_POLICY_OUT])
+ return 0;
+
err = xfrm_decode_session(skb, &fl, family);
if (err < 0)
return err;
Reference in a new issue View git blame Copy permalink