CVS commit: [netbsd-2-0] src/sys/netipsec

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: [netbsd-2-0] src/sys/netipsec
From: Matthias Scheler <tron%netbsd.org@localhost>
Date: Thu, 17 Jun 2004 09:26:58 +0000 (UTC)

Module Name:    src
Committed By:   tron
Date:           Thu Jun 17 09:26:58 UTC 2004

Modified Files:
        src/sys/netipsec [netbsd-2-0]: key.c

Log Message:
Pull up revision 1.20 (requested by jonathan in ticket #504):
Fix oversight from re-using reworked sysctl() code for unicast SPD,SADB dump:
because the sysctl() code wasn't setting the requestor-pid field in dump
responses, the reworked unicast dump wasn't setting the requestor pid, either.
More exaclty, the pid field was set to 0.
No problem for setkey(8), but racoon reportedly ignores SADB dump-responses
with any pid (including 0) which doesn't match its own pid. A private bug
report says the 0-valued pid field broke racoon code which attempts to recover
from death of a prior racoon process, by dumping the SADB at startup.
Fix by revising sys/netipsec, so that both the new unicast PF_KEY dump
responses and the sysctl code set the requestor pid field in all
response mesages to DUMP requests.


To generate a diff of this commit:
cvs rdiff -r1.11.2.6 -r1.11.2.7 src/sys/netipsec/key.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [netbsd-2-0] src/sys/arch/mac68k/dev
Next by Date: CVS commit: [netbsd-2-0] src/doc
Previous by Thread: CVS commit: [netbsd-2-0] src/sys/arch/mac68k/dev
Next by Thread: CVS commit: [netbsd-2-0] src/doc
Indexes:

Home | Main Index | Thread Index | Old Index