[Openswan dev] [PATCH] ipsec_sa_recycle() problem

David McCullough David_Mccullough at securecomputing.com
Wed Aug 5 19:38:40 EDT 2009

Jivin Martin Schiller lays it down ...
> There are some problems in the ipsec_sa_recycle() function when the 
> refFreeListCont swaps from one subtable to the next or when the end of 
> the whole refTable is reached. refFreeListHead should also only be set to 
> IPSEC_SAREF_FIRST, when a free "slot" can be found, because otherwise it 
> points to an illegal entry. For more details, see the attached patch.

I pushed this for inclusion, should be in git within the bext few days.


David McCullough,  david_mccullough at securecomputing.com,  Ph:+61 734352815
McAfee - SnapGear  http://www.snapgear.com                http://www.uCdot.org

More information about the Dev mailing list