source-changes: CVS commit: src/sys

Subject: CVS commit: src/sys
To: None <source-changes@NetBSD.org>
From: Charles M. Hannum <mycroft@netbsd.org>
List: source-changes
Date: 09/28/2003 04:45:14

Module Name:	src
Committed By:	mycroft
Date:		Sun Sep 28 04:45:14 UTC 2003

Modified Files:
	src/sys/netinet: ip_input.c
	src/sys/netinet6: ah_input.c

Log Message:
Remove some code that breaks AH tunnels completely.  The comment describing
the purpose of this code appears to be on crack -- it's talking about
end-to-end authentication, but the purpose of an AH tunnel is NOT end-to-end
authentication; it's authentication of the tunnel endpoints.

NB: This does not fix the fact that IPsec leaks "packet tags."


To generate a diff of this commit:
cvs rdiff -r1.178 -r1.179 src/sys/netinet/ip_input.c
cvs rdiff -r1.41 -r1.42 src/sys/netinet6/ah_input.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.