Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?

To: VANHULLEBUS Yvan <vanhu%free.fr@localhost>
Subject: Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?
From: Timo Teräs <timo.teras%iki.fi@localhost>
Date: Wed, 29 Oct 2008 15:40:37 +0200

VANHULLEBUS Yvan wrote:
>> Thus wrote VANHULLEBUS Yvan (vanhu%free.fr@localhost):
> [....]
>> This is in ipsecdoi_id2str() that only gets called in the debug case.
>>
>> struct sockaddr -> struct sockaddr_storage fixes the stack overflow.
> 
> Is this "the good way to fix the overflow, which is done in that
> structure" or is this "some extra memory allocation which seems to
> avoid crashes after an overflow somewhere else" ?

Yvan, this is the official way to fix it. IPv6 requires usage of
sockaddr_storage instead of sockaddr (which was the IPv4 time standard).
They changed the name to keep binary compatibility. Who ever added the
IPv6 stuff to that func was missing the conversion of sockaddr.

So yes, this is the correct thing to do.

- Timo

Follow-Ups:
- Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?
  - From: VANHULLEBUS Yvan

References:
- racoon+NAT-T and racoon+debug+IPv6 not so happy?
  - From: S.P.Zeidler
- Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?
  - From: VANHULLEBUS Yvan
- Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?
  - From: S.P.Zeidler
- Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?
  - From: VANHULLEBUS Yvan

Prev by Date: Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?
Next by Date: Re: cc -m32 support
Previous by Thread: Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?
Next by Thread: Re: [Ipsec-tools-devel] racoon+NAT-T and racoon+debug+IPv6 not so happy?
Indexes:

Home | Main Index | Thread Index | Old Index