| To: | Patrick McHardy <kaber@xxxxxxxxx> |
|---|---|
| Subject: | Re: IPSEC |
| From: | "David S. Miller" <davem@xxxxxxxxxxxxx> |
| Date: | Thu, 10 Mar 2005 18:40:07 -0800 |
| Cc: | steve@xxxxxxxxxxxxxxxxxxx, netdev@xxxxxxxxxxx |
| In-reply-to: | <422DE487.5020800@trash.net> |
| References: | <Pine.LNX.4.61.0503081706560.11525@sorbus2.navaho> <422DE487.5020800@trash.net> |
| Sender: | netdev-bounce@xxxxxxxxxxx |
On Tue, 08 Mar 2005 18:44:39 +0100 Patrick McHardy <kaber@xxxxxxxxx> wrote: > Steve Hill wrote: > > > then the ESP SA is added and it has the same sequence number (1) as the > > AH SA so the AH SA gets deleted. > > > > The xfrm_state_add() function does: > > x1 = __xfrm_find_acq_byseq(x->km.seq); > > ... > > xfrm_state_delete(x1); > > And this is responsible for deleting the AH SA due to it's matching > > sequence number. > > This is a bug in the kernel, __xfrm_find_acq_byseq should only return > XFRM_STATE_ACQ states. This patch should fix it. > > Signed-off-by: Patrick McHardy <kaber@xxxxxxxxx> Applied, thanks Patrick. |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | Re: [Patch] sctp: add receive buffer accounting to sctp (fwd), David S. Miller |
|---|---|
| Next by Date: | Re: [PATCH] rearrange netdevice structure to save space, David S. Miller |
| Previous by Thread: | Re: IPSEC, Steve Hill |
| Next by Thread: | Re: 2.6.11 on AMD64 traps, Andre Tomt |
| Indexes: | [Date] [Thread] [Top] [All Lists] |