tech-net: Re: kern/25368: crash after SADB_X

Subject: Re: kern/25368: crash after SADB_X_SPDFLUSH
To: None <itojun@itojun.org>
From: YAMAMOTO Takashi <yamt@mwd.biglobe.ne.jp>
List: tech-net
Date: 05/15/2004 06:41:14

> > > >	per-pcb policies should not be manipulated via PF_KEY.
> > > 
> > > 	oops, read access (via dump/whatever) is ok.
> > > 
> > > itojun
> > 
> > do you mean spddump should dump per-pcb ones as well?
> 
> 	we currently do show them via "setkey -DP".

no, we don't.
spddump dumps policies on sptree (ie. only spd ones) while spdflush
flushes ones on sptailq (ie. both of spd and pcb ones).

YAMAMOTO Takashi