Re: [bug report] xfrm: always fail xfrm_dev_{state,policy}_flush_secctx_check()

Next message: Li, Tianyou: "Re: [PATCH] mm/memory hotplug: Fix zone-&gt;contiguous always false when hotplug"
Previous message: Andy Shevchenko: "Re: [bug report] iio: adc: Add support for ad4062"
In reply to: Dan Carpenter: "[bug report] xfrm: always fail xfrm_dev_{state,policy}_flush_secctx_check()"
Next in thread: Dan Carpenter: "[bug report] ASoC: codecs: ACF bin parsing and check library file for aw88395"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Tetsuo Handa

Date: Fri Feb 06 2026 - 09:07:59 EST

On 2026/02/06 22:41, Dan Carpenter wrote:
> [ Smatch checking is paused while we raise funding. #SadFace
> https://lore.kernel.org/all/aTaiGSbWZ9DJaGo7@stanley.mountain/ -dan ]
>
> Hello Tetsuo Handa,
>
> Commit 638361ad7ab2 ("xfrm: always fail
> xfrm_dev_{state,policy}_flush_secctx_check()") from Feb 2, 2026
> (linux-next), leads to the following Smatch static checker warning:
>
> net/xfrm/xfrm_state.c:898 xfrm_dev_state_flush_secctx_check()
> warn: was '== (-1)' instead of '='

Thank you, but this change is intended for demonstrating to SELinux people that
making xfrm_dev_{state,policy}_flush() no-op results in hung task bug
( https://lkml.kernel.org/r/f9b88268-03dc-4356-8b31-0bab73cc9b1e@xxxxxxxxxxxxxxxxxxx ).

That change is already removed, and we are waiting for
https://lkml.kernel.org/r/2ec9c137-79a5-4562-8587-43dd2633f116@xxxxxxxxxxxxxxxxxxx
to be applied.