Re: bin/18331 (racoon doesn't keep SAs in sync)

To: gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,spz%NetBSD.org@localhost,M.Drochner%fz-juelich.de@localhost
Subject: Re: bin/18331 (racoon doesn't keep SAs in sync)
From: spz%NetBSD.org@localhost
Date: Mon, 5 Aug 2013 05:51:07 +0000 (UTC)

Synopsis: racoon doesn't keep SAs in sync

State-Changed-From-To: open->closed
State-Changed-By: spz%NetBSD.org@localhost
State-Changed-When: Mon, 05 Aug 2013 05:51:07 +0000
State-Changed-Why:
As Martin Neitzel noted, this is "behaving as the protocol demands"
and thus not a bug in racoon.
One thing that was a unfortunate feature of racoon was that it tended
to use the oldest valid SA, thus if the sides weren't in clock sync they'd
talk past each other. This has been changed to "newest valid SA gets used"
with much happier outcomes if the clocks are somewhat off.

Prev by Date: kern/48104: Incorrect forwarding of broadcast packets by bridge(4)
Next by Date: Re: toolchain/47955 toolchain issues with glib2
Previous by Thread: kern/48104: Incorrect forwarding of broadcast packets by bridge(4)
Next by Thread: Re: toolchain/47955 toolchain issues with glib2
Indexes:

Home | Main Index | Thread Index | Old Index