[Openswan Users] Forgotten patch in 2.4.8?
Paul Wouters
paul at xelerance.com
Tue Jun 5 12:49:53 EDT 2007
On Tue, 5 Jun 2007, Pompon2 wrote:
> We are on the way to begin the test migration to openswan 2.4.8.
>
> We encountered a bug on 2.4.7 that crashed our ipsec with a segmentation
> fault multiple times. We found a patch from Matthias Haas submited on Jan 15
> in the dev list that correct our problem :
>
> > --- openswan-2.4.7/programs/pluto/demux.c Fri Jan 12 11:35:21 2007
> > +++ openswan-2.4.7-debug/programs/pluto/demux.c Fri Jan 12 12:16:07 2007
> > @@ -2411,7 +2411,7 @@
> > * we can only be in calculating state if state is ignore,
> > * or suspended.
> > */
> > - passert(result == STF_IGNORE || result == STF_SUSPEND ||
> > st->st_calculating==FALSE);
> > + passert(result == STF_INLINE || result == STF_IGNORE || result ==
> > STF_SUSPEND || st->st_calculating==FALSE);
>
> As an answer to my mail detailing the problem, Paul Wouters told us that
> this patch was incorporated into 2.4.8rc1
>
> However, I was just looking at the 2.4.8. final release source code, and the
> patch is not present!
>
> Has it been forgotten or another solution has been replacing this patch?
It was forgotten. We planned to backport the nhelper code from 2.5, but then
backed out on that. The patch has just been applied to the 2.4.x tree. We
will do another 2.4.x release with these patches (once we also fix the running
on 2.4.34 issues)
Paul
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list