| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <1267538070.21749.27.camel@bigi> Date: Tue, 02 Mar 2010 08:54:30 -0500 From: jamal <hadi@...erus.ca> To: Steffen Klassert <steffen.klassert@...unet.com> Cc: Herbert Xu <herbert@...dor.apana.org.au>, davem@...emloft.net, kaber@...sh.net, yoshfuji@...ux-ipv6.org, nakam@...ux-ipv6.org, eric.dumazet@...il.com, netdev@...r.kernel.org Subject: Re: [RFC PATCH]xfrm: fix perpetual bundles On Tue, 2010-03-02 at 14:46 +0100, Steffen Klassert wrote: > The problem was spotted by > commit a33bc5c15154c835aae26f16e6a3a7d9ad4acb45 > xfrm: select sane defaults for xfrm[4|6] gc_thresh > > Before this commit, the xfrm garbage collector started to remove > stale bundle entries as soon as we reached an amount of 1024 > bundle entries. Now the default value for the gc_thresh is > based on the main route table hash size, so we can have much more > bundle entries. yikes. Ok. Seems this fix needs to go -stable as well then. > I tried it, works for me too. Did you try with CONFIG_XFRM_SUB_POLICY=y. Thats the only reason i said "looks like it might work". If you tried with that, then I dont need to test and I can add an ACKed-by;-> cheers, jamal -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists