CVS commit: [netbsd-3-0] src/sys/netipsec

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: [netbsd-3-0] src/sys/netipsec
From: Manuel Bouyer <bouyer%netbsd.org@localhost>
Date: Thu, 22 Nov 2007 19:01:38 +0000 (UTC)

Module Name:    src
Committed By:   bouyer
Date:           Thu Nov 22 19:01:38 UTC 2007

Modified Files:
        src/sys/netipsec [netbsd-3-0]: ipsec.c ipsec_osdep.h ipsec_output.c
            xform_ah.c xform_ipip.c

Log Message:
Pull up following revision(s) (requested by adrianp in ticket #1878):
        sys/netipsec/xform_ah.c: revision 1.19 via patch
        sys/netipsec/ipsec.c: revision 1.34 via patch
        sys/netipsec/xform_ipip.c: revision 1.18 via patch
        sys/netipsec/ipsec_output.c: revision 1.23 via patch
        sys/netipsec/ipsec_osdep.h: revision 1.21 via patch
The function ipsec4_get_ulp assumes that ip_off is in host order. This results
in IPsec processing that is dependent on protocol and/or port can be bypassed.
Bug report, analysis and initial fix from Karl Knutsson.
Final patch and ok from degroote@


To generate a diff of this commit:
cvs rdiff -r1.15 -r1.15.4.1 src/sys/netipsec/ipsec.c
cvs rdiff -r1.11 -r1.11.4.1 src/sys/netipsec/ipsec_osdep.h
cvs rdiff -r1.13 -r1.13.22.1 src/sys/netipsec/ipsec_output.c
cvs rdiff -r1.8 -r1.8.12.1 src/sys/netipsec/xform_ah.c
cvs rdiff -r1.10 -r1.10.4.1 src/sys/netipsec/xform_ipip.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [netbsd-3] src/sys/netipsec
Next by Date: CVS commit: [netbsd-3-1] src/sys/netipsec
Previous by Thread: CVS commit: [netbsd-3] src/sys/netipsec
Next by Thread: CVS commit: [netbsd-3-1] src/sys/netipsec
Indexes:

Home | Main Index | Thread Index | Old Index