]> git.karo-electronics.de Git - karo-tx-linux.git/commit
projects / karo-tx-linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: baedbe5) | patch
macsec: limit ICV length to 16 octets
authorDavide Caratti <dcaratti@redhat.com>
Fri, 22 Jul 2016 13:07:56 +0000 (15:07 +0200)
committerDavid S. Miller <davem@davemloft.net>
Mon, 25 Jul 2016 17:55:39 +0000 (10:55 -0700)
commit2ccbe2cb79f2f74ab739252299b6f9ff27586f2c
treeb5001d976b145d30c2d90c1de8da6b8b59275594tree | snapshot
parentbaedbe55884c003819f5c8c063ec3d2569414296commit | diff
macsec: limit ICV length to 16 octets

IEEE 802.1AE-2006 standard recommends that the ICV element in a MACsec
frame should not exceed 16 octets: add MACSEC_STD_ICV_LEN in uapi
definitions accordingly, and avoid accepting configurations where the ICV
length exceeds the standard value. Leave definition of MACSEC_MAX_ICV_LEN
unchanged for backwards compatibility with userspace programs.

Fixes: dece8d2b78d1 ("uapi: add MACsec bits")
Signed-off-by: Davide Caratti <dcaratti@redhat.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
drivers/net/macsec.c diff | blob | history
include/uapi/linux/if_macsec.h diff | blob | history
Linux kernel for KaRo TX COM modules