Date: Fri, 3 Aug 2001 10:53:13 -0700 From: Bill Fenner <fenner@research.att.com> To: itojun@iijlab.net Cc: mlnn4@oaks.com.au, freebsd-net@freebsd.org Subject: Re: kernel upgrade causes truncated IPSEC packets Message-ID: <200108031753.KAA19454@windsor.research.att.com>
next in thread | raw e-mail | index | archive | help
> was the fix committed to sys/net/if_tun.c? i guess other *BSDs have > the same issue. I just committed it. If anyone is interested in tracking down the problem in the IPSEC stack, the problem only seems to occur when the data is in a cluster mbuf (thus Chris's observation that small packets get through). My observation was: mbuf 1: IP header mbuf 2: AH header mbuf 3: ESP header mbuf 4: 0 length mbuf 5: cluster mbuf containing data When the data mbuf is a small mbuf, mbuf 4 is not inserted. I will spend a little more time on this in the next couple of weeks but it might be better if someone more familiar with the IPSEC code could look at it. Itojun, if you'll be at the IETF perhaps we can get together and look at it there? Bill To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200108031753.KAA19454>