Subject: CVS commit: src/sys
To: None <source-changes@NetBSD.org>
From: Charles M. Hannum <mycroft@netbsd.org>
List: source-changes
Date: 09/28/2003 04:45:14
Module Name: src
Committed By: mycroft
Date: Sun Sep 28 04:45:14 UTC 2003
Modified Files:
src/sys/netinet: ip_input.c
src/sys/netinet6: ah_input.c
Log Message:
Remove some code that breaks AH tunnels completely. The comment describing
the purpose of this code appears to be on crack -- it's talking about
end-to-end authentication, but the purpose of an AH tunnel is NOT end-to-end
authentication; it's authentication of the tunnel endpoints.
NB: This does not fix the fact that IPsec leaks "packet tags."
To generate a diff of this commit:
cvs rdiff -r1.178 -r1.179 src/sys/netinet/ip_input.c
cvs rdiff -r1.41 -r1.42 src/sys/netinet6/ah_input.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.