netdev
[Top] [All Lists]

Re: Bug in ipv6 ipsec in handling of packets with extension headers

To: Henrik Petander <lpetande@xxxxxxxxxx>
Subject: Re: Bug in ipv6 ipsec in handling of packets with extension headers
From: Mitsuru KANDA / 神田 充 <mk@xxxxxxxxxxxxxx>
Date: Fri, 06 Jun 2003 01:54:06 +0900
Cc: "David S. Miller" <davem@xxxxxxxxxx>, netdev@xxxxxxxxxxx
In-reply-to: <3EDF3EB4.8010105@tml.hut.fi>
References: <3EDF36AA.9020403@tml.hut.fi> <20030605.051709.104035049.davem@redhat.com> <3EDF3EB4.8010105@tml.hut.fi>
Sender: netdev-bounce@xxxxxxxxxxx
Hello,

At Thu, 05 Jun 2003 15:59:32 +0300,
Henrik Petander wrote:
> 
> David S. Miller wrote:
> >    From: Henrik Petander <lpetande@xxxxxxxxxx>
> >    Date: Thu, 05 Jun 2003 15:25:14 +0300
> >    
> >    A possible fix is to change the pointer into an offset from the start of 
> >    the packet and use the offset later to set the nexthdr value in the 
> >    extension header.
> > 
> > Please indicate the version of the sources you are looking
> > at when making reports.
> 
> Sure, esp6.c bitkeeper version was 1.16. Also a fix to the bug report: 
> the problem is with esp6 and not with ah6, which does not use the 
> get_offset function.
I have fixed this in our tree (replaced by ip6_found_nexthdr()).

I will send a patch related to these ipsec6 fix collection by this
weekend ASAP.

Regards,
-mk

<Prev in Thread] Current Thread [Next in Thread>