git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Eyal Birger <eyal.birger@gmail.com>
	Tue, 3 Sep 2024 00:07:10 +0000 (17:07 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 1 Nov 2024 00:52:36 +0000 (01:52 +0100)
commit	45cb99c5b95eb21de041c747c7a08e6af6b3a5e8
tree	6c0a336bee4a5ef8071e1d646c20f6dd44fdf34f	tree
parent	253843ec0c0a472a390a2227095db53000e8505a	commit \| diff

xfrm: respect ip protocols rules criteria when performing dst lookups

[ Upstream commit b8469721034300bbb6dec5b4bf32492c95e16a0c ]

The series in the "fixes" tag added the ability to consider L4 attributes
in routing rules.

The dst lookup on the outer packet of encapsulated traffic in the xfrm
code was not adapted to this change, thus routing behavior that relies
on L4 information is not respected.

Pass the ip protocol information when performing dst lookups.

Fixes: a25724b05af0 ("Merge branch 'fib_rules-support-sport-dport-and-proto-match'")
Signed-off-by: Eyal Birger <eyal.birger@gmail.com>
Tested-by: Antony Antony <antony.antony@secunet.com>
Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>

include/net/xfrm.h		diff \| blob \| blame \| history
net/ipv4/xfrm4_policy.c		diff \| blob \| blame \| history
net/ipv6/xfrm6_policy.c		diff \| blob \| blame \| history
net/xfrm/xfrm_policy.c		diff \| blob \| blame \| history